Agile Developer

SSO Authentication

Axpert 11
TStructs (Forms)
IViews
Scripts
Axpert Jobs
Axpert Cards
HTML Plug-ins
Users & Roles
Workflow
Axpert API
Application Var/Params
Publish Axpert Apps
Axpert Mobile
Settings
Utilities
Customization
WebServices
Axfast

SSO Authentication

SSO authentications are inbuilt in the AxpertWeb with followings such as OKTA, Office365, Google Account & FaceBook. Users can choose multiple SSO Authentications based on requirements.

Configurations:

  1. Should be registered Client ID from each SSO in their developer sites examples given individually.
  2. Should be enabled below keys in web.config file in the webcode.
    1. ssologin : okta,office365,google,facebook
      Ex: <add key="ssologin" value="okta,office365,google,facebook"/>
    2. ssoclientKey : oktaClientiId,office365ClientId,googleClientId,facebookClientID
      Ex:<add key="ssoclientKey" value="0oacsbt8oZl24CEmQ4x6,bfff8cad-3c1c-4c14-9499-2423c724f3b7,493358977849-so1sc0tcs9gqrh4jiuaqs36jr9cns0cv.apps.googleusercontent.com,252601612604428"/>
    3. ssoclientsecretKey : Client Secret Id have the google and facebook only and below is the example.
      Ex: <add key="ssoclientsecretKey" value=",,ChzG0QxESuMZkQ--mStkSj9z,2bdba09e6ba0e2f47225487344153b59"/>
    4. ssoredirecturl : This is basically redirect URL after SSO authentication
      Ex: <add key="ssoredirecturl" value="https://example.com/"/>

OKTA

1. Goto https://developer.okta.com/ 2. Create Application

Sso1.PNG

3. Web Application

Sso2.PNG

4. Enter application name, Base URL, Login redirect URLs, Logout Redirect URLS

Sso3.PNG

Sso4.PNG

5. API — Trusted Origins

Sso5.PNG

6. Users –> Add Person

Sso6.PNG

7. Copy Client ID and add the same in web.config

Sso7.PNG

8. OKTA will not give a popup window to enter username & password, so in this case username & password has to enter as normal login. but for other SSO login will show the popup there has to be enter the username and password.

Sso8.png

Office365

1. Goto https://portal.azure.com/

O1.PNG

2. Select Azure Active Directory Service.

O2.PNG

3. Choose App Registrations –> New Registration

O3.PNG

4. Enter application name & Choose Supported Account Type

O4.PNG

5. Choose redirect URL type as Web & enter the redirect URL

O5.PNG

6. Copy Client ID and add in web.config

O6.PNG

Google Account

1. Goto https://console.developers.google.com/

2. Login / Signup with Google account

3. Create New project

G1.PNG

4. Credentials –> Create Credentials

G2.PNG

5. Choose OAuth client ID

G3.PNG

6. Configure consent screen

G4.PNG

7. Choose Internal / External

G5.PNG

8. Application Name, logo, email, add scope if required more, application home page url and Save

G6.PNG

9. Select Credentials — > Create Credentials –> OAuth client ID –> Select Application Type as Web Application

G7.PNG

10. Add URIs & Authorised redirect URIs and Save

G8.PNG

11. add these Client ID and Secret key in web.config

G9.PNG

Facebook

1. Goto https://developers.facebook.com/

2. Login/ SingUp with facebook

3. Create App in My Apps

4. Enter app name, email id and click on create app id

F1.png

5. Set Up facebook login.

F2.PNG

6. Choose WEB and give Site URL and save and continue

F3.PNG

7. FaceBook login settings –> Enable Embedded Browser OAuth Login & give a valid OAuth Redirect URIs and Save Changes.

F4.PNG

8. Settings –> Basic –> Copy App ID & App Secret keys and add in web.config in the webcode

F5.PNG

9. My Permissions and Features –> Email & Default — in case the app does not work these permissions should be enabled.

F6.PNG