Single sign-on User Guide 5.01

Content
Search
Index
infoSearch is case-insensitive.
Use and/or as operators.
[word1 word2] is like [word1 or word2]
Do not use quotes to group words.
Example: [datetimeedit and new and features]
Loading, please wait ...

Loading

  • Single sign-on User Guide
  • What's new in 5.01
  • Documentation conventions
    • Syntax diagrams
    • Notes, tips, and warnings
    • Code examples
  • Overview
  • Genero delegation and GIP service
  • Identity Provider (IdP)
  • Single sign-on workflow
  • How to implement Single sign-on (SSO)
    • Genero Identity Provider (GIP)
      • GIP scenario
      • GIP components
      • Configure the GIP
        • Provide access to the openid-connect directory
        • Configure GIP across multiple GASes
        • Configure an external GIP
        • StarterApp reference
      • Quick Start: Set authorization for group
        • Create a user group and a user
        • Deploy and secure an app
        • Set group authorization roles
        • Set group scopes for profile API
        • Set group scopes for app using a service
      • Managing GIP components
        • Manage users
        • Manage user properties
        • Manage groups
        • Manage applications
        • Manage web services
        • Manage authorization roles
        • Manage web service access scopes
        • Manage refresh tokens
      • Deploying and managing the GBC
        • Set GBC default in Deployment App
      • Configure service to service authentication with GIP
      • Deploying and securing applications and web services
        • Deploy and secure an application using the Deployment App
        • Deploy an application NOT using the Deployment App
        • Deploy a web service using the Deployment App
        • Deploy a web service NOT using the Deployment App
        • Automate application deployment via scripts
        • Automate application configuration via scripts
        • Enable an archive with the Deployment App
        • Undeploy an archive with the Deployment App
      • Share files using the SharedFile App
      • GIP Troubleshooting
        • GIP log files
        • Troubleshoot GIP errors in logs
        • IdP errors
        • Access service errors
        • OIDC service errors
        • HTTPS errors
      • Reference
        • Tools and Commands
          • DeployGar
          • DeployGbc
        • GIP API reference
        • GIP working directory
    • OpenID Connect/OAuth2 SSO
      • Identify the protocol in use
      • Configure GAS for OpenID Connect/OAuth2 SSO
      • Implement SSO using OpenID Connect
        • Add OpenID Connect SSO to web application
        • Configure OpenID Connect identity on Google
        • Import OpenID Connect IdP metadata
      • Implement SSO using OAuth2
        • Add OAuth2 SSO to web application
        • Import IdP metadata
        • How to integrate Facebook SSO
        • How to integrate Instagram SSO
        • Set OAuth request format
      • Configure service to service authentication with IdP
      • Redirect OAUTH via an HTML form
      • Set client remote IP address
      • Set app start mode (gnonce or cookie)
      • Show IdP metadata
      • Retrieve the user identifier
      • Retrieve roles and scopes
      • Retrieve registration endpoint
      • Add authorization program to filter access
      • Resume an application after auto logout
      • Logout from SSO
        • Configure SSO logout from Amazon Cognito
        • Troubleshooting the Google IdP
      • Reference
        • OpenIDConnect fglprofile
        • OpenIDConnect log file
    • SAML SSO
      • Configure GAS for SAML SSO
      • Add SAML SSO to a Genero web application
      • Select the SAML server (Identity Provider)
      • Define the SAML user identifier format
      • Retrieve the SAML user identifier
      • Set the authentication context
      • Retrieve identity attributes with SAML
      • Authorization and SAML SSO
      • Authorize re-log in with SAML SSO
      • Execute an application with SAML SSO
      • Configure SAML SSO log out
      • Specify a database to store SAML data
      • Reference
        • SAML fglprofile location and use
        • SAML configuration file
        • SAML log file
  • SSO custom sample (simplesso)
  • Use autologout prompt with SSO
  • Connect to the application database with SSO
  • Upgrading
    • New Features of the SSO
      • SSO 5.01 new features
      • SSO 5.00 new features
      • SSO 4.01 new features
    • Upgrade Guides for SSO
      • Migrate your GIP database
      • SSO 5.01 upgrade guide
      • SSO 5.00 upgrade guide
      • SSO 4.01 upgrade guide
  • Reference
    • GAS SSO oauth2callback redirect URL
    • Tools and Commands
      • GetToken
      • ImportOAuth
      • ImportIdP
  • Copyrights and Trademarks
  • BDL DeployGar tool options [1]
  • BDL DeployGbc tool options [1]
  • BDL gettoken tool options [1]
  • command reference
    • fglrun AccessProgram [1]
    • fglrun ImportIdP [1]
    • fglrun ImportOAuth [1]
  • configuration element
    • AUTHCONTEXT [1]
    • IDFORMAT [1]
  • Console App
    • applications [1]
    • authorization role [1]
    • custom properties [1]
    • groups [1]
    • services [1]
    • tokens [1]
    • user properties [1]
    • users [1]
    • web services [1]
    • what is the Console App [1]
  • deploy
    • application [1] [2]
    • Deployment App [1] [2]
    • web service [1] [2]
  • deploy apps
    • deploy and secure [1]
  • Deployment App
    • default [1]
    • what is the Deployment App [1]
  • DeploymentApp
    • default [1]
  • Doc conventions [1]
  • enable archive
    • with deployment app [1]
  • examples
    • application configuration
      • with OAuth2 SSO [1]
      • with OpenID Connect SSO [1]
      • with SAML SSO [1]
    • OpenID Connect
      • retrieve roles and scopes [1]
    • Single sign-on (SSO)
      • OpenID Connect
        • authorization program [1]
        • retrieve user identifier [1]
      • SAML
        • authorization program [1]
        • retrieve identity attributes [1]
        • retrieve user identifier [1]
      • simplesso [1]
    • Single sign-on(SSO)
      • SAML
        • execute an application [1]
  • feature changes
    • version list [1]
  • file format
    • OpenID Connect
      • FGLPROFILE file [1]
      • OIDC.log [1]
    • SAML.log [1]
  • Genero Browser Client
    • default [1]
  • Genero Identity Provider (Genero Identity Provider (GIP))
    • configure for distributed GAS [1]
    • configure for external IdP [1]
    • install Genero Identity Provider (GIP) [1]
    • quick start [1]
  • Genero Identity Provider (GIP)
    • deploy app from scripts [1]
    • overview [1]
    • set scopes from scripts [1]
  • GIP
    • configure service to service [1]
  • GIP access error
    • 401 [1]
  • Import IdP metadata [1] [2]
  • log files
    • GIP logs [1]
  • OAuth2
    • authenticate service to service [1]
  • OpenID Connect
    • Retrieve registration endpoint [1]
    • Retrieve roles and scopes [1]
  • reference
    • Genero identity provider [1]
    • GIP [1]
  • secure
    • application [1] [2]
    • Deployment App [1] [2]
    • web service [1] [2]
  • SharedFileApp
    • share files [1]
  • show IdP metadata [1]
  • Single sign-on (GIP)
    • working directory [1]
  • Single sign-on (overview) [1]
  • Single sign-on (SSO) [1]
    • autologout prompt [1]
    • database connections [1]
    • delegation service [1]
    • how to implement [1]
    • Identity Providers (IdP) [1]
    • implement with OAuth2 [1]
    • implement with OpenID Connect [1]
    • ImportOAuth command [1]
    • OAuth2
      • Add to web application [1]
      • OAUTH parameter
        • CLIENT_PUBLIC_ID parameter [1]
        • CLIENT_SECRET_ID parameter [1]
    • oauth2callback [1]
    • OpenID Connect [1]
      • Add to web application [1]
      • app start mode [1]
      • authorize re-log in [1]
      • authorize user [1]
      • check client remote address [1]
      • configure for GAS [1]
      • configure Google identity [1]
      • FGLPROFILE file [1]
      • IDP parameter
        • CLIENT_PUBLIC_ID parameter [1]
        • CLIENT_SECRET_ID parameter [1]
      • IDP redirect with HTML form [1]
      • OIDC log file [1]
      • Retrieve user identifier [1]
    • OpenID Connect service
      • format [1]
    • SAML [1]
      • Add SSO to web application [1]
      • authenticate user [1]
      • authorize user [1]
      • authorize user re-log [1]
      • configuration file entries [1]
      • configure GAS [1]
      • database [1]
      • define the ID format [1]
      • digital signatures [1]
      • federation of identities [1]
      • fglprofile file [1]
      • IDP parameter [1]
      • importIdP tool [1]
      • log file [1]
      • retrieve identity attributes [1]
      • retrieve user identifier [1]
      • specify Identity Provider [1]
    • workflow [1]
  • Single sign-on(SSO)
    • facebook SSO [1]
    • instagram SSO [1]
    • OAuth2 [1] [2]
    • OpenID Connect [1]
      • SSO logout [1]
    • SAML
      • authenticate user [1]
      • SSO logout [1]
  • troubleshooting
    • GIP access errors [1]
    • GIP errors in logs [1]
    • GIP HTTPS errors [1]
    • GIP issues [1]
    • GIP oidc errors [1]
    • IDP errors [1]
  • undeploy archives
    • with deployment App [1]
  • upgrade guide
    • Version 4.01 [1]
    • Version 5.00 [1]
    • Version 5.01 [1]
  • user info profile service
    • custom properties [1]
    • user properties [1]
  • what's new
    • upgrade guides [1]
    • Version 4.01 [1]
    • Version 5.00 [1]
    • Version 5.01 [1] [2]