Configure applications for delegation and SSO

To enable SSO, you need to configure your Genero applications for delegation. The steps vary depending on the identity provider and protocol used.

To support single sign-on (SSO), your Genero applications must be configured for delegation. The configuration depends on whether you're using the Genero Identity Provider (GIP) or a third-party identity provider (IdP), and which protocol—OpenID Connect, OAuth2, or SAML—is supported.

Using the Genero Identity Provider

The GIP supports OpenID Connect. You register applications and services that require authentication with the GIP. When you deploy applications in a Genero Archive using the Deployment App, registration is handled automatically. This includes creating a CLIENT_ID and SERVICE_ID, and updating your application configuration files with GIP details. For details, go to Deploying and securing applications and web services

Using a third-party identity provider

If you're using a third-party IdP, you must manually configure your Genero web application configuration file with the details provided by the IdP. The configuration depends on the protocol:

OpenID Connect

Configure your application using the IdP's OpenID Connect details. For details, go to Add OpenID Connect SSO to web application

OAuth2

Configure your application using the IdP's OAuth2 details. For details, go to Add OAuth2 SSO to web application

SAML

Configure your application using the IdP's SAML details. For details, go to Add SAML SSO to a Genero web application