Knowledge Base
  • Select Role
  • English
  • Login

Joget SSO with OpenID Connect

OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol, allowing for secure authentication and user identity verification. By configuring OpenID Connect, Joget users can leverage Auth0 to manage user identities more efficiently, streamline the login process, and enhance security. This setup involves:

Additionally, you will configure SMTP settings for reliable email notifications. The steps provided ensure a robust setup for a seamless user authentication experience.

Integrate OpenID Connect

To configure Joget SSO with OpenID Connect, follow the steps below:

  1. Create an Auth0 account.
  2. Use the tenant provided in your Auth0 account.
  3. From the Auth0 dashboard, navigate to User Management > Users > Create User to create a new user.
  4. Access the discovery URL (such as https://[your-tenant-domain].auth0.com/.well-known/openid-configuration) to retrieve configuration details.
  5. Use a JSON beautifying tool to organize the JSON file from the discovery URL.
  6. Copy the relevant values from the discovery URL and paste them into the respective fields in the Joget OpenID Connect Manager Plugin:
    • Issuer URL to issuer
    • Authorization Token Endpoint to authorization_endpoint
    • Token Endpoint to token_endpoint
    • User Info Endpoint to userinfo_endpoint
    • Json Web Key Set to jwks_uri
    • Response Types Supported to "code"
    • Scope to "openid profile email"

  7. From the Auth0 application, copy the Client ID and Client Secret and paste them into the Joget OpenID Connect Manager Plugin.


  8. From the Joget OpenID Connect Manager Plugin, copy the  Callback URL and paste it into the Auth0 application under Allowed Callback URLs.
  9. Set up your SMTP for email notifications in Joget.
  10. Verify the configuration by checking the login pages.
    • Joget Login Screen: Pressing the "Login" button will redirect you to the next screen.
    • OpenID Login Screen

Note:

  • If you are a free user, you may be limited to 3 licensed users, if so you may have to delete other users to accommodate for the user login.
  • In Joget's System Settings > General Settings, set API Domain Whitelist to *. If this is not set, you will get a 400 Forbidden error when performing the SSO.

Download plugin

Created by Marcos Last modified by Aadrian on Dec 13, 2024
Tags:
Previous Joget SSO with Keycloak NextJoget SSO to Active Directory with Kerberos