This document provides information about the Provider report screen, which displays details about OpenID providers.
Access Path
- In Segura®, on the navigation bar, hover over the Product Menu and select Settings.
- In the side menu, select Authentication > OpenID > Providers.
Action Menu
| Item | Type | Description |
|---|---|---|
| New provider | Button | Redirects to the Provider Registration screen. |
| Actions | Dropdown menu | Displays the options Print report, Export CSV, and Schedule report. |
Search Fields
Info
To display all search fields, click More.
| Item | Type | Description |
|---|---|---|
| Code | Text field | Filters by the OpenID provider identification code in Segura®. |
| Type | Dropdown menu | Filters by the type of OpenID provider. |
| Client ID | Text field | Filters by the client ID in Segura®. |
| Redirect URL | Text field | Filters by the OpenID provider's redirect URL. |
| Active | Dropdown menu | Filters OpenID providers by their activation status in Segura®. Can be Yes or No. |
| Environment | Dropdown menu | Filters by the environment in which the provider will be used. |
Report Fields
- Code.
- Type.
- Client ID.
- Redirect URL.
- Status: indicates the activation status of the provider in Segura®.
- Environment.
- Actions:
- Update provider: opens the Provider Registration window in edit mode.
- Provider details: opens the provider details window.
- Delete provider: deactivates the provider.
Provider Registration
This section provides information about the Provider Registration screen.
| Item | Type | Required | Description |
|---|---|---|---|
| Type | Dropdown menu | Yes | Selects the type of OpenID provider. |
| Active | Option button | Yes | Sets the activation status of the provider. |
| Environment | Option button | Yes | Selects the provider's environment. Options are Local and Domum Remote Access. |
| Client ID | Text field | Yes | Sets the client ID in the OpenID provider. |
| Client secret | Text field | Yes | Sets the client application's client secret in the OpenID provider. |
| Public domain or IP for redirect URL | Text field | Yes | Sets the public domain or IP address of Segura®. Used by the OpenID provider to redirect the user back to your application after authentication. |
| Redirect URL | Text field | Yes | Sets the specific endpoint in the client application to which the OpenID provider redirects the user after authentication. This endpoint is responsible for receiving the authorization code or access token. |
| Comment | Text field | No | Enter comments, such as notes, explanations, and others. |
| OpenID endpoint configuration | Text field | No | Sets the OpenID configuration endpoint. If Google OpenID is selected, the field will be automatically filled with Google's information. |
| Authorization endpoint | Text field | No | Sets the URL provided by the OpenID provider where the application sends the authorization request. |
| Token endpoint | Text field | No | Sets the URL provided by the OpenID provider where the application sends the request to exchange the authorization code for an access token. |
| Userinfo endpoint | Text field | No | Sets the URL provided by the OpenID provider where the application can request the authenticated user's profile information using the access token. |
| JWK endpoint (required if not available in the OpenID endpoint) | Text field | No | Sets the endpoint where the application can obtain the OpenID provider's public keys to validate the access token signature. Required if these keys are not available in the OpenID configuration endpoint. |
| Additional issuers (comma-separated) | Text field | No | Sets the list of additional issuers accepted by the application. Useful when the application needs to support multiple OpenID providers. Issuers are separated by commas. |
Device Authorization Configuration
| Item | Type | Required | Description |
|---|---|---|---|
| Enable device authorization | Toggle button | Yes | Enables authorization through a device. |
| Username for device authorization | Text field | No | Username to be used for authentication. |
| Password for device authorization | Text field | No | Password to be used for authentication. |
| Token endpoint URL | Text field | No | Endpoint to generate the authentication token. |
| Status verification endpoint URL | Text field | No | URL to verify the user's authentication status. |
| User info endpoint URL | User field | No | URL to verify user information. |