FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login

    Configure FustionAuth as an OpenID provider?

    Scheduled Pinned Locked Moved Unsolved
    Q&A
    2
    5
    615
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V
      vinhdat82
      last edited by

      Hi all,
      Could we configure FusionAuth as an OpenID provider?
      So my external application can connect to FusionAuth via OpenID Connect.

      FusionAuth will keep the user information.
      Thanks a lot.

      danD 1 Reply Last reply Reply Quote 1
      • danD
        dan @vinhdat82
        last edited by

        @vinhdat82 Yes, you can do this.

        Here's more about this: https://fusionauth.io/docs/v1/tech/oauth/

        Here's an example using ruby on rails: https://fusionauth.io/docs/v1/tech/tutorials/integrate-ruby-rails

        --
        FusionAuth - Auth for devs, built by devs.
        https://fusionauth.io

        V 1 Reply Last reply Reply Quote 1
        • V
          vinhdat82 @dan
          last edited by vinhdat82

          @dan said in Configure FustionAuth as an OpenID provider?:

          https://fusionauth.io/docs/v1/tech/oauth/

          I read the link before.
          It mentioned about Oauth2 rather than OpenID.
          I guess the configuration to use OpenID will be similar to Oauth2?

          My app needs something like the below to connect to an OpenID provider.
          Could I use the similar links in Oauth2 in FusionAuth's Application?
          - "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__ENABLED=true"
          - "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__REGISTRATION_ENABLED=true"
          - "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__REGISTRATION_CALLBACK_URL="
          - "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__PROVIDER_URL=https://xxx.example.com/auth/realms/<Your Realm Name>"
          - "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__CLIENT_ID=<the OpenId Client id you created in keycloak>"
          - "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__CLIENT_SECRET=<Get the secret from the OpenId client you create in xxx>"
          - "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__REDIRECT_URL=https://xxx.com/auth/oidc/callback"
          - "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__LOGOUT_URL="
          - "APPLICATION_SERVER__USER_AUTHENTICATION__OPENID_CONNECT__LOGIN_LABEL=Login with xxx"

          Thanks a lot for your help.

          V 1 Reply Last reply Reply Quote 0
          • V
            vinhdat82 @vinhdat82
            last edited by

            I think it is not possible to use FusionAuth as Open ID Provider.
            FusionAuth can only be use as Open ID Client to Apple/Google... only.

            Please advise and correct me if I'm wrong.

            danD 1 Reply Last reply Reply Quote 0
            • danD
              dan @vinhdat82
              last edited by

              @vinhdat82

              You can definitely use FusionAuth as an OpenID Connect provider. The callback is https://your.fusionauth.server/oauth2/callback

              We only support front channel logout.

              Can you share more details about the application you are trying to use FusionAuth for? What is the framework, etc?

              That might help me direct you to some better documentation.

              --
              FusionAuth - Auth for devs, built by devs.
              https://fusionauth.io

              1 Reply Last reply Reply Quote 0
              • First post
                Last post