Single Sign-On (SSO)

Integrate with Your Identity Provider

Sliderule supports both SAML and Oauth2.0 integrations out of the box. Although the provided examples below are specific to Okta, any Identity Provider that supports one of these two standards can be similarly integrated!

Okta Oauth Setup

Sliderule supports Okta integrations and other Oauth2.0 providers out of the box. All you have to do is configure the correct environment variables in the containers running our application and you're ready to go.

API Container Configuration

Setting the following environment variables on your Sliderule API image allows the server to authenticate through Okta:

AUDIENCE_URL=<okta application client idx, e.g., 0oa60sue2aTiW9Dsh5d7>
OKTA_ENABLED=true
ISSUER_URL=<okta authentication server url, e.g., https://dev-72287343.okta.com/oauth2/default>

Web Container Configuration

Similar to the api container, the web container also needs values for the following variables in order to complete the okta integration:

AUTH_AUDIENCE=<okta application client idx, e.g., 0oa60sue2aTiW9Dsh5d7>
OKTA_ENABLED=true
AUTH_DOMAIN=<okta authentication server url, e.g., https://dev-72287343.okta.com/oauth2/default>

Other Important Points

Login/Logout Redirects

When creating the application in Okta, the sign in redirect uri should be your sliderule url plus the path '/login/callback'. The signout recirects are just the sliderule url by itself

Security Settings

Also, make sure to add the sliderule url to your Okta security > API > Trusted Origins. The important point here is to enable cross origin resource sharing. For example: