This time I am trying to use Corteza to authenticate third-party applications using OAuth2 and OIDC.
I cannot find the Authority URL to use to setup this up. There is no mention of what the path is in the documentation.
My other question is what is the ClientId I should be using? Is that going to be the Handle you enter when creating the Auth Client? It appears this may be the RecordId (unique identifier of the auth client that was created? i can get this from the query string in the url when navigating to the auth client?)
Iāve tried the following paths and none of them return the JSON response Iām expecting
/auth/oauth2/public-keys
/auth/oauth2/info
/auth/oauth2/token
/auth/oauth2/
/auth/
Could you please provide a working example that I could implement in Postman for testing and verification please?
Iād like for my web services to make an HTTP POST request to Corteza and have Corteza send the ID token and authorization code to the web service. This way my web service is authenticated by Corteza and if necessary can run under the context of the current Corteza user.
The clientID is the long number in the URL; example (some local auth client I have) 275793286092816386
If youāre planning on authenticating your other services, then Iād suggest you use client credentials grant type which should already provide a cURL example
That button shows up when you have your secret visible (click on the eye icon in the secret field).
If that doesnāt fix it try to refresh the page/validate all the configs are as they should be
I took the curl from the website that was successful and saved it to a file. I imported that file into postman and ran it. But Postman gives me the following error back
The only time I would get this error during my testing is if I firstly selected authorization_code grant type, saved it, switched to client_credentials and then ran the cURL request without saving it.
Can you make sure you saved the auth client? Can you make a new one and try again? It worked fine on my instance with same version.
my external client will need to authenticate against Corteza so Iām trying to make sure I can get a successful authentication attempt via Postman first
Iād assume Postman didnāt parse these params correctly; can you export the cURL Postman creates here?
I donāt use Postman so I canāt offer much more help then telling you all those -d's and -u's are in there
Appreciate the help!
It doesnt look like I can export as curl but here are the screenshots of the configuration in postman
[Edit] It ended up being a stale cookie in postman as soon as I deleted that cookie everything started working! I appreciate the help.
Just found this discussion. I tried to follow the example. But I fail when submitting the auth client configuration with error: āAuth client update failed: auth client security configuration invalid.ā
When selecting āWill be used to to authenticate usersā the configuration will be saved without error.
What version are you using?
Can you provide the screenshots/curl of the request youāre executing (in the browser network console you can right click on the request and copy as cURL ā remove the JWT).
Iāve now found the cause. The āimpersonate userā field was empty. If I enter an user there, I can also submit.
But in your screenshot from March 25, the field was also empty. Mmmmh.
Another question:
How looks the cUrl statement when I want to login an user from an external application with his userid and password? Is āclient_credentialsā the correct grant type for this case?