Skip to main content

Configure OpenId external login

Integrating OpenID with WeSolve allows organizations to streamline user authentication, enhancing both security and user experience. This document guides administrators through the process of setting up external OpenID, detailing each step and explaining the technical concepts involved.

Accessing External Login Settings

  1. Log In: Ensure you are logged into the WeSolve platform with your administrator credentials.

  2. Navigate to Settings: Locate and select Administration from the left-side menu and select Setings to open the settings page.

  3. Open External Login Settings tab: Locate and select External Login Settings from the tabs menu.

Enabling and Configuring OpenID Login

In the External Login Settings:

  • Enable OpenID Login: Locate OpenID Connectand check the box Enable to enable OpenID authentication.
  • Configure OpenID Parameters:
    • Client ID: Enter the Client ID provided by your OpenID provider.
    • Client Secret: Enter the Client Secret associated with your Client ID.
    • Authority: Specify the URL of the OpenID provider.
    • Login URL: Provide the login URL where users will be redirected for authentication.
    • Validate Issuer: Ensure this is checked for added security, validating the identity of the issuer.

3. Setting up Claims Mapping

Claims are user attributes shared by the OpenID provider. WeSolve allows custom mapping of these claims to user attributes in your system.

  • Default Mapping: By default, WeSolve maps the preferred_username claim to unique_name.
  • Custom Mapping: You can map additional claims by specifying them in the format "claim_name": "desired_attribute_name".

Supported Claims:

The following claims are supported and can be mapped according to your organization's needs:

  • sub
  • name
  • family_name
  • given_name
  • middle_name
  • nickname
  • preferred_username
  • website
  • gender
  • birthdate
  • zoneinfo
  • locale
  • updated_at
  • email
  • email_verified
  • phone_number
  • phone_number_verified

Examples of Integrating Popular OpenID Systems

Below are examples of how to integrate popular OpenID systems with WeSolve:

Example: Integrating with Google

  • Client ID: your-google-client-id
  • Client Secret: your-google-client-secret
  • Authority: https://accounts.google.com
  • Login URL: https://accounts.google.com/o/oauth2/v2/auth
  • Claims Mapping:
    • "email": "email"
    • "name": "full_name"

Example: Integrating with Microsoft

  • Client ID: your-microsoft-client-id
  • Client Secret: your-microsoft-client-secret
  • Authority: https://login.microsoftonline.com
  • Login URL: https://login.microsoftonline.com/common/oauth2/v2.0/authorize
  • Claims Mapping:
    • "preferred_username": "username"
    • "email": "email"
Back to top