...
Anchor OIDCServerConfig OIDCServerConfig
OIDC Server Configuration
| OIDCServerConfig | |
| OIDCServerConfig |
- If you have not already done so, register DTP with your OpenID Connect identity provider.
- issuerUri
- clientId
- clientSecret
- Register the necessary redirect URIs so that the OIDC server knows where to send the user after authentication. The following URIs should be registered:
Required:
http(s)://<HOST>:<PORT>/pst/login/oauth2/code/dtphttp(s)://<HOST>:<PORT>/pstsec/login/oauth2/code/dtp(User Administration)http(s)://<HOST>:<PORT>/grs/login/oauth2/code/dtp(Required for Report Center/Enterprise Pack)
Optional . The (The following redirect URIs are optional and only need to be registered to enable log in directly through individual applications:.)
http(s)://<HOST>:<PORT>/licenseserver/login/oauth2/code/dtp(License Server)http(s)://<DATA_COLLECTOR_URL>/login/oauth2/code/dtp(Data Collector)
...
Open the oidc.json file located in the <DTP_DATA_DIR>/conf directory to configure the OIDC provider properties used by DTPby DTP.
| Code Block | ||||
|---|---|---|---|---|
| ||||
{
"enabled": false,
"issuerUri": "your issuer uri",
"clientId": "your client id",
"clientSecret": "your client secret",
"scopes": ["openid", "profile", "email"],
"claimMappings":
{
"username": "preferred_username",
"firstName": "given_name",
"lastName": "family_name",
"email": "email"
},
"adminUsers": []
} |
The The oidc.json file should be configured prior to the admin users logging in for the first time, otherwise the users will be added to the database without the permissions necessary for performing administrative functions.
...