Wiki source code of OAuth 2

Hide last authors
jdr 7.1 1 {{content/}}
2
jdr 36.1 3 When adding a //OAuth 2// identity provider the following parameters are requested:
jdr 7.1 4
jdr 36.1 5 == Base settings ==
jdr 7.1 6
jdr 36.1 7 {{figure image="oauth_base_settings_en.png" clear="h1"}}
8 Basic settings for the configuration of the OAuth 2 identity provider.
jdr 9.1 9 {{/figure}}
jdr 7.1 10
jdr 21.1 11 === Name ===
jdr 19.3 12
jdr 36.1 13 Name of the identity provider in {{formcycle/}}.
jdr 7.1 14
jdr 36.1 15 === Different name on form login button ===
jdr 7.1 16
jdr 36.1 17 If a form has been configured to offer several authentication options, a dialog will be displayed when opening the form in which an authentication type has to be selected. The text content that should be on the button for this identity provider can be configured here.
jdr 7.1 18
jdr 36.1 19 If nothing is entered here, the name entered under //Name// is used.
jdr 7.1 20
jdr 36.1 21 === Alias for callback URL (UUID) ===
jdr 7.1 22
jdr 36.1 23 Unique identifier that is used when the identity provider returns to {{formcycle/}}. This value is generated automatically, but can be changed if necessary.
jdr 7.1 24
jdr 36.1 25 === Callback URL ===
jdr 7.1 26
jdr 36.1 27 URLs for each {{formcycle/}}-Server (master server as well as frontend servers) which can be used when returning from the identity provider to {{formcycle/}}. Each URL can be copied to the clipboard by clicking the copy icon to the right of the URL.
jdr 8.1 28
jdr 36.1 29 == Initially visible buttons ==
jdr 8.1 30
jdr 36.1 31 Below the base settings there are initially 3 buttons whose functions are intended to help with the configuration of the identity provider.
jdr 8.1 32
jdr 36.1 33 === Send email to provider ===
jdr 8.1 34
jdr 36.1 35 Opens the e-mail program set up in the system with a pre-formulated request regarding the information required for the configuration of the identity provider in {{formcycle/}}.
jdr 8.1 36
jdr 36.1 37 === Help ===
jdr 8.1 38
jdr 36.1 39 Opens this help page in the browser.
jdr 8.1 40
jdr 36.1 41 === Add configuration ===
jdr 8.1 42
jdr 36.1 43 If the required information has been provided by the identity provider, the area for the configuration of the identity provider can be opened by clicking on this button. Afterwards the area //configuration// which is described below opens.
jdr 11.1 44
45 == Configuration ==
46
jdr 36.1 47 {{figure image="oauth_configuration_en.png" clear="h1"}}
48 Configuration options for an OAuth 2 identity provider.
jdr 11.1 49 {{/figure}}
50
51 === Key ===
52
jdr 36.1 53 Unique ID of the configuration you get from your identity provider.
jdr 11.1 54
55 === Secret ===
56
jdr 36.1 57 Secret key which is used to authenticate your client.
jdr 11.1 58
59 === Scope ===
60
jdr 36.1 61 Specifies the access scope that FORMCYCLE uses when querying fields from the identity provider.
jdr 11.1 62
jdr 36.1 63 === Authorization Request URL ===
jdr 11.1 64
jdr 36.1 65 Defines the URL which is used for an authorization request from the identity provider.
jdr 11.1 66
jdr 36.1 67 === Access-Token Request URL ===
jdr 11.1 68
jdr 36.1 69 Defines the URL that is used to request the access token from the identity provider.
jdr 11.1 70
jdr 36.1 71 === URL to determine the profile data ===
jdr 11.1 72
jdr 36.1 73 Defines the URL which is used to request the (user) profile data from the identity provider.
jdr 11.1 74
jdr 36.1 75 === Request method for determining the profile data ===
jdr 11.1 76
jdr 36.1 77 Defines the request method (GET or POST) which is used for the request to receive the profile data from the Identity Provider.
jdr 11.1 78
jdr 36.1 79 === Attribute name for unique identifier in profile data ===
jdr 11.1 80
jdr 36.1 81 Overrides the attribute name for the identifier in the returned profile data. The default value is "id".
jdr 11.1 82
jdr 36.1 83 == Mapping of the profile attributes to FORMCYCLE user profile ==
jdr 11.1 84
jdr 36.1 85 {{figure image="oauth_extended_settings_en.png" clear="h1"}}
86 Advanced settings for configuring an OAuth 2 identity provider.
jdr 12.1 87 {{/figure}}
88
jdr 36.1 89 === Given name ===
jdr 11.1 90
jdr 36.1 91 Specifies which profile attribute should be used for the user's first name.
jdr 11.1 92
jdr 36.1 93 === Last name ===
jdr 11.1 94
jdr 36.1 95 Specifies which profile attribute should be used for the user's last name.
jdr 11.1 96
jdr 36.1 97 === Display name ===
jdr 11.1 98
jdr 36.1 99 Specifies which profile attribute should be used for the user's display name.
jdr 11.1 100
jdr 36.1 101 === Username ===
jdr 11.1 102
jdr 36.1 103 Specifies which profile attribute should be used for the user name of the user.
jdr 11.1 104
jdr 36.1 105 === Email ===
jdr 11.1 106
jdr 36.1 107 Specifies which profile attribute should be used for the user's email address.
jdr 11.1 108
jdr 36.1 109 === Language ===
jdr 11.1 110
jdr 36.1 111 Specifies which profile attribute should be used for the user's language. (Value must correspond to a code from ISO standards 3166 or 639.)
jdr 11.1 112
jdr 36.1 113 === Location ===
jdr 11.1 114
jdr 36.1 115 Specifies which profile attribute should be used for the user's location. (Value must correspond to a code from ISO standards 3166 or 639.)
jdr 11.1 116
jdr 36.1 117 === Picture URL ===
jdr 11.1 118
jdr 36.1 119 Specifies which profile attribute should be used for the user's picture URL. (Value must be convertible to a valid URI.)
jdr 11.1 120
jdr 36.1 121 === Profile URL ===
jdr 11.1 122
jdr 36.1 123 Specifies which profile attribute should be used for the user's profile URL. (Value must be convertible to a valid URI.)
jdr 11.1 124
jdr 36.1 125 === Extended attribute mapping ===
jdr 11.1 126
jdr 36.1 127 In addition to the ones listed above, other attributes can be defined in this table. A property and a corresponding value must be entered in each line.