TABLE OF CONTENTS
Introduction
OAuth 2.0 is an authorization framework used by third-party applications to obtain limited access to an HTTP service on behalf of a resource owner. This article provides a step-by-step guide on how to configure OAuth 2.0 with the Identity Provider (IdP) of your choice. By following these instructions, you can enable seamless authentication and access control.
Prerequisites
Before configuring OAuth 2.0, make sure you have the following necessary information from your IdP:
- Client ID
- Client Secret
The following items are good to have:
- Authorization URL
- Access token URL
- Logout URL
- Scope
Configuring SSO
1. Navigate to Settings > Integrations & Automation > Authentication
2. Under Authentication tab click on 'Configure' button of the SSO of your choice (Okta/Jumpcloud/OneLogin)
3. Provide Client ID & Client Secret (Mandatory)
- Keka makes a request to the IdP for user information
- The IdP responds with the user's information in JSON format, containing relevant details such as name, email, and user ID. Keka uses this information to authenticate the user.
4. Specify 'Scope'
- Scopes define the specific resources or actions that the application is allowed to access on behalf of the user.
- When a user is prompted to grant authorization to an application, the application specifies the requested scopes to the IdP.
5. Copy and paste 'Authorization URL'
- If you haven't already signed in, the application will redirect you to the authorization URL provided by your IdP.
- This URL initiates the authorization process and prompts you to grant access to the application.
6. Copy and paste 'Access token URL'
- The access token URL is the endpoint used by a third-party application to exchange an authorization code for an access token, enabling it to access protected resources on behalf of the user.
7. Copy and paste 'Logout URL'
- When a user is logged in to an application or system through SSO, their authentication state is typically maintained by the IdP.
- The logout URL allows the application to initiate the logout process and inform the IdP to terminate the user's session.
8. Once you click on 'Save' the configuration is completed and the SSO is enabled.
Reconfiguring SSO
To reconfigure follow the following steps:
1. Navigate to Settings > Integrations & Automation > Authentication
2. Click on the 3 dots in the SSO card and choose 'Reconfigure' option
3. You can follow the steps mentioned in the 'Steps To Configure' section to reconfigure an SSO.
Learn More
By following these simple steps, you can easily OAuth 2.0 with Idp of your choice in Keka.
We hope this guide helps you make the most of SSO authentication in Keka.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article