Detailed SSO config. sample
17.7.2.2. OAuth 2.0 SSO configuration example IAM to IAM (client-centric)

SSO via OAuth 2.0 from Airlock IAM authorization server (AS) to Airlock IAM client

This configuration sample illustrates how to connect one Airlock IAM to another Airlock IAM using OAuth 2.0.

Preparation

For this configuration, determine the following information first:

  • 1.
    A shared secret between the Client and AS.
  • 2.
    Requested Roles/Scopes (if any) - The list of roles/scopes the user needs to have assigned in order for the OAuth 2.0 authentication to succeed. In the example below, the default role 'authenticated' is used for demonstration purposes.
  • 3.
    Attributes of the user to transfer from the AS to the Client. Those can be the username (mandatory), roles (optional), context data (optional).