Versions Compared

Old Version 26

changes.mady.by.user Ng Miao Xuan

Saved on

compared with

New Version 27

changes.mady.by.user Damien Ng

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

AttributeDescription
Callback URL

URL to which Auth0 redirects users after they authenticate.

Ensure to provide this Callback URL to your OpenID Connect service.

Issuer
  • Issuer URL
  • Custom

Issuer URL

URL which is used to validate the discovery URL (Issuer URL + "/.well-known/openid-configuration") 

URL where Auth0 can find the OpenID Provider Configuration Document, which should be available in the  /.well-known/openid-configuration  endpoint.

Authorization Token Endpoint

Authorization server's authorization endpoint, which you can retrieve using the server's Metadata URI (Issuer URL + "/.well-known/openid-configuration")

Panel
borderColorgrey
titleColorwhite
titleBGColorgrey
titleSample Format

https://${Issuer URL}/oauth2/${authServerId}/v1/authorize

Available when Issuer  is set to "Custom ".
Token Endpoint
The endpoint on the Authorization Server is used to programmatically request tokens,  which you can retrieve using the server's Metadata URI (Issuer URL + "/.well-known/openid-configuration")
Panel
borderColorgrey
titleColorwhite
titleBGColorgrey
titleSample Format

https://${Issuer URL}/oauth2/${authServerId}/v1/token

Available when Issuer  is set to "Custom ".
User Info Endpoint

User Profile Information,  which you can retrieve using the server's Metadata URI (Issuer URL + "/.well-known/openid-configuration")

Panel
borderColorgrey
titleColorwhite
titleBGColorgrey
titleSample Format

https://${Issuer URL}/oauth2/${authServerId}/v1/userinfo

Available when Issuer  is set to "Custom ".
Json Web Key Set
Issued by the authorization server and signed using the RS256 signing algorithm
Panel
borderColorgrey
titleColorwhite
titleBGColorgrey
titleSample Format

https://${Issuer URL}/oauth2/${authServerId}/v1/keys

Available when Issuer  is set to "Custom ".
Response Types SupportedBy default, code

Client ID

The Client ID provisioned by the OpenID provider when the client was registered

Client Secret

The Client Secret (password) provisioned by the OpenID provider when the client was registered
Scope

A list of Auth0 scopes to request when connecting to the Identify Provider. 

By default, openid profile email

User Provisioning Enabled

If enabled, ensures the user account is created in Joget's User Directory

Save Access Token And Refresh Token To User Meta?

If enabled, saves access token and refresh token (if available, may need to include offline_access in Scope) to user meta: oidcAccessToken and oidcRefreshToken

Tokens can be accessible with User Meta Hash Variable

  • #currentUser.meta.oidcAccessToken#
  • #currentUser.meta.oidcRefreshToken#

Access token can also be refreshed with a Hash Variable #oidc.refreshAccessToken# which will attempt to get a new set of tokens with refresh token if the current access token has expired.


Configure OpenID Connect Login Button

...