Log in to your LoginRadius Dashboard account, select your app and navigate to Integration, the following screen will appear:
Click Add button for adding a new OpenID app. The following configuration options will appear:
Either search for OpenID in search bar or go to the Select Category dropdown and select Outbound SSO category. Locate Outbound SSO-OpenID and click the Try It For Free link. The following pop-up will appear:
Click the Enable button. The OpenID app is now available in the Available Integrations.
Click the Let’s Configure option under Outbound SSO-OpenID box. The following screen will appear:
Enter or select the following to configure the OpenID app:
- App Name: Enter the name for your OpenID Connect App.
- Secret Key: You will need to generate an OpenID Connect Secret using RS256 and add it here. You can get the secret key by running the following command on your terminal:
openssl genrsa -out key.pem 2048
Additionally, you can use the following command to generate the Public key from the private key that will be used to verify generated JWT id_token.
openssl rsa -in key.pem -outform PEM -pubout -out public.pem
- Algorithm: The algorithm you would like to use for OpenID Connect (RS256 is currently the only algorithm supported).
- Data Mapping: Enter your desired fields and how they map out the left column is how they will show up in the OIDC. The right column is the field name in the LoginRadius profile, keep in mind that for some of the profile fields you will need to use dot notation to access them.
- Click the Save button.
The Outbound SSO-OpenID app is now configured.
Note: To know more about how LoginRadius supports various OIDC Flows, refer to this document.