Configure FustionAuth as an OpenID provider?
-
Hi all,
Could we configure FusionAuth as an OpenID provider?
So my external application can connect to FusionAuth via OpenID Connect.FusionAuth will keep the user information.
Thanks a lot. -
@vinhdat82 Yes, you can do this.
Here's more about this: https://fusionauth.io/docs/v1/tech/oauth/
Here's an example using ruby on rails: https://fusionauth.io/docs/v1/tech/tutorials/integrate-ruby-rails
-
@dan said in Configure FustionAuth as an OpenID provider?:
I read the link before.
It mentioned about Oauth2 rather than OpenID.
I guess the configuration to use OpenID will be similar to Oauth2?My app needs something like the below to connect to an OpenID provider.
Could I use the similar links in Oauth2 in FusionAuth's Application?
- "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__ENABLED=true"
- "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__REGISTRATION_ENABLED=true"
- "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__REGISTRATION_CALLBACK_URL="
- "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__PROVIDER_URL=https://xxx.example.com/auth/realms/<Your Realm Name>"
- "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__CLIENT_ID=<the OpenId Client id you created in keycloak>"
- "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__CLIENT_SECRET=<Get the secret from the OpenId client you create in xxx>"
- "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__REDIRECT_URL=https://xxx.com/auth/oidc/callback"
- "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__LOGOUT_URL="
- "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__LOGIN_LABEL=Login with xxx"Thanks a lot for your help.
-
I think it is not possible to use FusionAuth as Open ID Provider.
FusionAuth can only be use as Open ID Client to Apple/Google... only.Please advise and correct me if I'm wrong.
-
You can definitely use FusionAuth as an OpenID Connect provider. The callback is https://your.fusionauth.server/oauth2/callback
We only support front channel logout.
Can you share more details about the application you are trying to use FusionAuth for? What is the framework, etc?
That might help me direct you to some better documentation.