gluu client reg
Do this only on customer request and disable again as soon as possible. Let the expiration time at its default value. This means registration is normally only valid for 24 hours...
- Navigate to
Configuration->JSON Configuration->OxAuth Configuration. - Set the value fo attribute
dynamicRegistrationEnabledtotrue. - Then click the
Save Configurationbutton.
Make sure he/she uses a meaningful client name.
Make sure he/she captures his/her client ID and client secret.
Let him/her set as much info as possible during client registration, including the redirect Login URI(s).
Let him/her notify you when the dynamic client registration is completed, and provide you:
- the client name
- the client ID
- (not the client secret...)
Disable client registration as soon as the customer notifies you about the completion of dynamic client registration.
- Navigate to
Configuration->JSON Configuration->OxAuth Configuration. - Set the value of attribute
dynamicRegistrationEnabledtofalse. - Then click the
Save Configurationbutton.
- Navigate to
OpenID Connect->Clients->(the client with the given name and ID). - Set the value of attribute
Logo URItohttps://tcblsso.ilabt.iminds.be/resources/logos/login-with-TCBL.png. - Set the value of attribute
Pre-AuthorizationtoFalse; this will require the authorization page after login to a site. - Set the value of attribute
Persist Client AuthorizationstoTrue; this will skip the authorization page for all logins to a site except the first one. - Set the value of attribute
Client Secret Expiresto1/1/30 12:00(which is probably long enough). - Add any additional Login Redirect URIs.
- Then click the
Updatebutton.
- Navigate to
OpenID Connect->Clients, then click the buttonAdd Client. - Then a form is displayed, where you can fill in the required fields and some optional fields, if necessary.
- Click
Addat the bottom.
Complete client information as documented above for dynamically registered clients.
For a full explanation, see the Gluu docs.