- Create an Auth0 account here.
- Use whatever tenant you have available, in my case it is "dev-hprpdb0led4su3pm", but yours will be different.
- From the dashboard, go to User Management > Users > Create User, and create a new user.
- Then, based on Okta documentation, we will need to go to the discovery URL to extract the necessary information. For In my case, it is https://dev-hprpdb0led4su3pm.jp.auth0.com/.well-known/openid-configuration.
- You can use a JSON beautifying tool reorganize the JSON file from the previous step. In our case, we used this web tool.
- From the discovery URL, copy the relevant values and paste it them into the respective fields in Joget OpenID Connect Manager Plugin. First, set the issuer to Custom. Please refer to Figure 1 & Figure 2.
- issuer → Issuer URL
- authorization_endpoint → Authorization Token Endpoint
- token_endpoint → Token Endpoint
- userinfo_endpoint → User Info Endpoint
- jwks_uri → Json Web Key Set
- "code" → Response Types Supported
- "openid profile email" → Scope
- From the Application, copy the relevant values and paste it them into the respective fields in Joget OpenID Connect Manager Plugin. Please refer to Figure 1 & Figure 3.
- Client ID → Client ID
- Client Secret → Client Secret
- From the Joget OpenID Connect Manager Plugin, copy the relevant values and paste it them into the respective fields in the Application. Please refer to Figure 1 & Figure 4.
- Callback URL → Allow Callback URLs
- After setting up the OpenID Connect Provider Details, you will have to set up your SMTP, for detailed instructions on configuring the Email Tool, click here.
- If you have configured the settings correctly, you should be met with these pages:the pages seen in Figure 5 & Figure 6:
Image Added
Figure 1: Plugin configuration
Image Added
Figure 2: Discovery URL's Relevant Values
Image Added
Figure 3: Application
Image Added
Figure 4: Callback URLs
Image Modified
Figure 15: Joget Login Screen: Pressing the "Login" button will redirect you to the next screen.
Figure 26: OpenID Login Screen
You may refer to the color coded images below to guide your configuration.
Image Removed
Figure 3: Plugin configuration
Image Removed
Figure 4: Discovery URL
Image Removed
Figure 5: Application
Image Removed
Figure 6: Callback URLs
Notes:
- If you are a free user, you maybe may be limited to 3 licensed users, if so you may have to delete other users to accommodate for the user login.
- In the Joget System Settings > General Settings, set API Domain Whitelist to to * (IMPORTANT NOTE: If this is not set, you will get a 400 Forbidden error when performing the SSO).
- Download the plugin here.