OpenID providers

Prev Next

This document provides information about the Providers report screen, which displays information about the openID providers.

Path to access

  1. On Segura, in the navigation bar, hover over the Products menu and select Settings.
  2. In the side menu, select Authentication > OpenID > Providers.

Actions menu

Item Type Description
New provider Button Directs to the Provider Registration screen.
Actions Dropdown menu Displays the options Print Report, Export CSV, and Schedule Report.

Search fields

Info

To view all search fields, click More.

Item Type Description
ID Text field Filters by the OpenID provider identification code within Segura.
Type Dropdown menu Filters by the type of OpenID provider.
Client ID Text field Filters by the client ID in Segura.
Redirect URL Text field Filters by the OpenID provider redirect URL.
Enabled Dropdown menu Filters OpenID providers by their activation state in Segura.
Environment Dropdown menu Filters by the environment in which the provider will be used.

Report fields

  • ID.
  • Type.
  • Client ID.
  • Redirect URL.
  • Status: indicates the provider’s activation state in Segura.
  • Environment
  • Actions:
    • Update provider: opens the Provider Registration window in edit mode.
    • Provider details: opens the provider details screen.
    • Delete provider: disables the provider.

Provider registration

This section provides information about the Provider registration screen.

Item Type Required Description
Type Dropdown menu Yes Defines the OpenID provider type
Enabled Radio button Yes Selects the provider’s activation state.
Environment Radio button Yes Selects the provider’s environment. Options are Local and Domum Remote Access.
Provider name Text field Yes Defines the name of the provider.
Client ID Text field Yes Defines the Client ID of the OpenID provider.
Client secret Text field Yes Defines the application’s client secret in the OpenID provider.
Preferred username Text field No Defines the OpenID attribute that will be used as the user identifier, such as email.
Domain or public IP for URL Redirection Text field Yes Defines Segura’s public domain or IP address. The OpenID provider uses this to redirect the user back to their application after authentication.
Redirect URL Text field Yes Defines the specific endpoint in the client application to which the OpenID provider redirects the user after authentication. This endpoint is responsible for receiving the authorization code or access token.
Comments Text field No The user inputs various comments, including notes and explanations.
OpenID endpoint configuration Text field No Defines the OpenID endpoint configuration. If you select Google OpenID, Google information will automatically fill the field.
Authorization Endpoint Text field No Defines the URL provided by the OpenID provider to which the application sends the authorization request.
Token endpoint Text field No Defines the URL provided by the OpenID provider to which the application sends the request to exchange the authorization code for an access token.
Userinfo endpoint Text field No Defines the URL provided by the OpenID provider from which the application can request information from the authenticated user's profile using the access token.
JWK endpoint (mandatory if it is not in the main openid endpoint) Text field No Defines the endpoint where the application can obtain the public keys from the OpenID provider to validate the access token signature. It is mandatory if these keys are not available on the OpenID Configuration Endpoint.
Additional issuers (separated by comma) Text field No Defines a list of additional issuers that are accepted by the application. This feature proves beneficial when the application requires support for multiple openID providers. Issuers are separated by a comma.
Enable device authorization Toggle button Yes Enables or disables device authorization for OpenID providers.
Username for device authorization Text field No Username for authorization.
Password for device authorization Text field No User password for authorization.
Token endpoint URL Text field No URL of the authorization token endpoint.
Status check endpoint URL Text field No URL of the endpoint for verifying the authorization status.
User information endpoint URL Text field No URL of the endpoint for verifying user information.