Skip to main content

loginradius-as-custom-idp-into-another-loginradius-app

LoginRadius App as Custom IDP With Another LoginRadius App

LoginRadius can act as Identity Provider as well as Service Provider and establishes the trust and authentication process between the multiple applications using the industry-standard protocols ( SAML, OIDC, Oauth and JWT).

If you have multiple LoginRadius applications and wants to create a smooth experience for the consumer by unifying their accounts and allowing them to login with one identity, you can leverage any industry-standard protocols ( SAML, OIDC, Oauth and JWT) to create single sign-on workflow where on one LoginRadius application acts as Identity Provider and other LoginRadius application act as service Provider.

This document provides a step-by-step guide to configure a LoginRadius application as Custom IDP using the OAuth workflow with your other LoginRadius application.

Configuration in the Service Provider LoginRadius Application

1. Navigate to Platform Configuration>Authentication Configuration>Custom IDPs in admin console

IDP

2. Go to the OAuth Provider and click on the Add Provider button.

IDP

3. Enter the following details of your Identity Provider LoginRadius application as follows:

  • Provider Name- Enter any desired unique name for your app. This name will be displayed under the social login forms in the LoginRadius Identity Framework page as well as on the social login form rendered by LoginRadius V2.js library on the customer’s web application.

  • Customer Login Endpoint - https://cloud-api.loginradius.com/sso/oauth/redirect

  • Access Token Endpoint- https://cloud-api.loginradius.com/sso/oauth/access_token

  • Application Key- Enter the API Key for your LoginRadius Identity Provider application. Please see here for how to get the API key in the Admin Console.

  • Application Secret- Enter the API Secret for your LoginRadius Identity Provider application. Please see here for how to get the API Secret in the Admin Console.

  • Scope- email

  • Response Type- code

  • Customer Profile Endpoint -https://api.loginradius.com/identity/v2/auth/account?apiKey=: Please see here for how to get the API key in the Admin Console.

  • Request Token Http Method- POST

  • Query Parameter

KeyValue
access_token#accesstoken#

IDP

  • Data Mapping
    Below two fields are mandatory to create an account in LoginRadius.
FieldsValue
IDUid
EmailEmail[0].Value

IDP

4. After Providing all data Click on the Save button to save the provider.

IDP

To test the Custom IDP With the Service Provider LoginRadius App

  • Go to the Service Provider LoginRadius App IDX URL https://<APP Name>.hub.loginradius.com/ where APP Name is the name of LoginRadius site for your Service Provider application.

  • Click on the icon with the Name of a social provider you are given on the login radius configuration page

  • After redirection to the Auth0 Application UI, enter the user credentials for LoginRadius Identity Provider application.

  • After successful authentication, it will redirect to the profile page in the Service Provider IDX.

IDP