OpenID Connect (OIDC) on Nirmata Documentation

OpenID Connect (OIDC) on Nirmata Documentationhttps://docs.nirmata.io/docs/control-hub/identity-access/oidc/Recent content in OpenID Connect (OIDC) on Nirmata DocumentationHugoenThu, 21 Mar 2024 00:00:00 +0000Configuring Okta as an Identity Provider in Nirmatahttps://docs.nirmata.io/docs/control-hub/identity-access/oidc/okta/Thu, 21 Mar 2024 00:00:00 +0000https://docs.nirmata.io/docs/control-hub/identity-access/oidc/okta/<h2 id="prerequisites">Prerequisites</h2> <ul> <li>Administrative access to your Okta organization account or Okta App Integration</li> <li>Administrative access to Nirmata account</li> </ul> <h2 id="configuration-steps">Configuration Steps</h2> <h3 id="1-create-a-new-application-in-okta">1. Create a New Application in Okta</h3> <ol> <li>Log in to your Okta Admin Console.</li> <li>In the left sidebar, navigate to <strong>Applications > Applications</strong>.</li> <li>Click <strong>Create Application Integration</strong>.</li> <li>Select <strong>OIDC</strong>.</li> <li>Choose <strong>Web Application</strong> as the platform.</li> <li>Click <strong>Create</strong>.</li> </ol> <h3 id="2-configure-application-settings">2. Configure Application Settings</h3> <ol> <li>In the application settings, fill in the following: <ul> <li><strong>App integration name</strong>: (e.g., Nirmata app)</li> <li><strong>Application type</strong>: Web</li> <li><strong>Grant type configuration:</strong> <ul> <li>Under <strong>Grant type</strong>: <ul> <li>Check <strong>Client Credentials</strong> (under “Client acting on behalf of itself”).</li> <li>Under <strong>Core grants</strong>, check <strong>Authorization Code</strong>. (Leave <strong>Refresh Token</strong> unchecked unless your use case requires it.)</li> <li>Expand <strong>Advanced</strong>: <ul> <li>Leave all <strong>Okta direct auth API grants</strong> (OTP, OOB, MFA OTP, MFA OOB) unchecked.</li> <li>Under <strong>Other grants</strong>, check <strong>Implicit (hybrid)</strong>. <ul> <li>Check both <strong>Allow ID Token with implicit grant type</strong> and <strong>Allow Access Token with implicit grant type</strong>.</li> </ul> </li> </ul> </li> </ul> </li> </ul> </li> <li><strong>Login redirect URIs</strong>: <ul> <li><strong>Sign-in redirect URIs</strong> <code>https://<nirmata-domain>/security/api/oidc/callback/</code></li> </ul> </li> <li><strong>Sign-out redirect URIs</strong> <code>https://<nirmata-domain>/security/api/oidc/logout/</code></li> </ul> </li> </ol> <p>Click on <strong>Save</strong></p>