Single Sign-On (SSO)
Integrate with Your Identity Provider
Sliderule supports both SAML and Oauth2.0 integrations out of the box. Although the provided examples below are specific to Okta, any Identity Provider that supports one of these two standards can be similarly integrated!
Okta Oauth Setup
Sliderule supports Okta integrations and other Oauth2.0 providers out of the box. All you have to do is configure the correct environment variables in the containers running our application and you're ready to go.
API Container Configuration
Setting the following environment variables on your Sliderule API image allows the server to authenticate through Okta:
AUDIENCE_URL=<okta application client idx, e.g., 0oa60sue2aTiW9Dsh5d7>
OKTA_ENABLED=true
ISSUER_URL=<okta authentication server url, e.g., https://dev-72287343.okta.com/oauth2/default>
Web Container Configuration
Similar to the api container, the web container also needs values for the following variables in order to complete the okta integration:
AUTH_AUDIENCE=<okta application client idx, e.g., 0oa60sue2aTiW9Dsh5d7>
OKTA_ENABLED=true
AUTH_DOMAIN=<okta authentication server url, e.g., https://dev-72287343.okta.com/oauth2/default>
Other Important Points
Login/Logout Redirects
When creating the application in Okta, the sign in redirect uri should be your sliderule url plus the path '/login/callback'. The signout recirects are just the sliderule url by itself
Security Settings
Also, make sure to add the sliderule url to your Okta security > API > Trusted Origins. The important point here is to enable cross origin resource sharing. For example:
Updated over 1 year ago