Uploaded image for project: 'Grouper'
  1. Grouper
  2. GRP-4360

migrate from oidc non external system to external system

    XMLWordPrintable

Details

    • Improvement
    • Resolution: Fixed
    • Minor
    • 2.6.16
    • None
    • None
    • None

    Description

       

      In grouper.properties, change from .oidc. to .oidcExternalSystem. for the config items below. Also edit the OIDC external system and make sure all settings are there and it saves correctly. Test a WS call

      The configId (testConfigId below) needs to match with the external system config as well.

      ############################################
      		 
      ## oidc client service config
      		 
      ############################################ 
      		 
       
      		 
       
      		 
      # enabled or disabled
      		 
      # {valueType: "boolean", defaultValue: "true", order: 1000 }
      		 
      # grouper.oidc.testConfigId.enabled =
      		 
       
      		 
       
      		 
      # this is the oidc system config id
      		 
      # {valueType: "string", required: true, order: 2000, formElement: "dropdown", optionValuesFromClass: "edu.internet2.middleware.grouper.app.oidc.OidcGrouperExternalSystem"}
      		 
      # grouper.oidc.testConfigId.oidcExternalSystemConfigId =
      		 
       
      		 
       
      		 
      # needed for retrieving an access token, e.g. https://my.app/someUrlBackFromIdp
      		 
      # {valueType: "string", order: 3000 }
      		 
      # grouper.oidc.testConfigId.redirectUri =
      		 
       
      		 
       
      		 
      # scope to retrieve from oidc, e.g. openid email profile (required)
      		 
      # {valueType: "string", required: true, order: 4000}
      		 
      # grouper.oidc.testConfigId.scope =
      		 
       
      		 
       
      		 
      # subject source id
      		 
      # {valueType: "string", order: 5000, formElement: "checkbox", checkboxValuesFromClass: "edu.internet2.middleware.grouper.SubjectFinder"}
      		 
      # grouper.oidc.testConfigId.subjectSourceIds = 
      		 
       
      		 
      # subject id type
      		 
      # {valueType: "string", required: true, order: 6000, formElement: "dropdown", optionValues: ["subjectId", "subjectIdentifier", "subjectIdOrIdentifier"] }
      		 
      # grouper.oidc.testConfigId.subjectIdType = 
      		 
       
      		 
       
      		 
      # some claim name that has the subjectId / subjectIdentifier / subjectIdOrIdentifier in it.  e.g. employeeId (required)
      		 
      # {valueType: "string", required: true, order: 7000 }
      		 
      # grouper.oidc.testConfigId.subjectIdClaimName =
      		 
       
      		 
       
      		 
      # e.g. code
      		 
      # {valueType: "string", order: 8000 }
      		 
      # grouper.oidc.testConfigId.oidcResponseType =

      Attachments

        Activity

          People

            vivek.sachdeva@at.internet2.edu Vivek Sachdeva (google.com)
            chris.hyzer@at.internet2.edu Chris Hyzer (upenn.edu)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: