Difference between revisions of "OpenID Connect"

Latest revision as of 00:47, 19 August 2025

Login to Cloudwork Dashboard
Navigate to Single Sign On>Manage OpenID Connect Apps

Example of OpenID Connect Apps List

Here you will be able to list of already configured OpenID Connect Apps

Navigate to Single Sign On>Manage OpenID Connect Apps > Add New Service

Navigate to Single Sign On>Manage OpenID Connect Apps>Identity Provider

Example of OpenID Connect IDP Details

Cloudwork supports the following scopes

openid: Required for OpenID Connect
email: Optional; required if you need the user's primary email address
profile: provides the standard profile claims defined by the OpenID Connect specs
https://scopes.cloudwork.id/profile: provides custom claims configured in Cloudwork that aren't explicitly part of the OIDC spec, such as SIS ID
offline_access: allows access to refresh tokens

@@ Line 1: / Line 1: @@
 ==OpenID Connect==
+===General Settings===
 #Login to '''Cloudwork Dashboard'''
 #Navigate to '''Single Sign On'''>'''Manage OpenID Connect Apps'''<br>[[File:Openidlist.PNG|centre|frame|Example of OpenID Connect Apps List]]
@@ Line 12: / Line 12: @@
 ===OpenID Connect IDP Details===
 #Navigate to '''Single Sign On'''>'''Manage OpenID Connect Apps'''>'''Identity Provider'''<br>[[File:Openid_idp_details.PNG|centre|frame|Example of OpenID Connect IDP Details]]
+===Supported Scopes===
+Cloudwork supports the following scopes
+*'''openid''': Required for OpenID Connect
+*'''email''': Optional; required if you need the user's primary email address
+*'''profile''': provides the standard profile claims defined by the OpenID Connect specs
+*'''https://scopes.cloudwork.id/profile''': provides custom claims configured in Cloudwork that aren't explicitly part of the OIDC spec, such as SIS ID
+*'''offline_access''': allows access to refresh tokens
 [[Category:Cloudwork Dashboard]]