Last modified by messines on 2022/05/25 10:11
From version 5.1
edited by messines
on 2021/03/18 12:17
Change comment: There is no comment for this version
To version 10.1
edited by messines
on 2021/11/15 14:39
Change comment: There is no comment for this version

Summary

Details

Page properties
Content
... ... @@ -19,8 +19,12 @@
19 19  1. save your registration access token for further modifications of your client
20 20  1. use the token to call the create endpoint
21 21  
22 -Note that a Jupyter Notebook notebook is available in the Drive of this collab to help you create and modify your OIDC client. Its name is: **//Managing an OpenID Connect client.ipynb//** [add link]
22 +==== Easiest way to create a client ====
23 23  
24 +**A live exemple of client ID creation is available here on our lab**, you can perfectly use this notebook to create your client, the next steps in this documentation reproduce the content of the notebook. **The easiest solution as a user is to use this notebook to create a client** and avoid human error while executing curl request manually.
25 +
26 +[[https:~~/~~/lab.ebrains.eu/user/user-redirect/lab/tree/shared/Collaboratory%20Community%20Apps/Managing%20an%20OpenID%20Connect%20client.ipynb>>https://lab.ebrains.eu/user/user-redirect/lab/tree/shared/Collaboratory%20Community%20Apps/Managing%20an%20OpenID%20Connect%20client.ipynb]]
27 +
24 24  === Ask for developer accreditation ===
25 25  
26 26  To be authorize to create an OIDC client you have to be accredited as developer.
... ... @@ -83,25 +83,26 @@
83 83  curl -X POST https://iam.ebrains.eu/auth/realms/hbp/clients-registrations/default/ \
84 84   -H "Authorization: Bearer ${clb_dev_token}" \
85 85   -H 'Content-Type: application/json' \
86 - -d '{
87 - "clientId": "my-awesome-client",
88 - "name": "My Awesome App",
90 + -d '{ "clientId": "your_client_id",
91 + "name": "Collaboratory workshop demo client edited",
89 89   "description": "This describes what my app is for end users",
90 - "rootUrl": "https://root.url.of.my.app",
91 - "baseUrl": "/relative/path/to/its/frontpage.html",
93 + "rootUrl": "https://example.org",
94 + "baseUrl": "https://example.org",
92 92   "redirectUris": [
93 - "/relative/redirect/path",
94 - "/these/can/use/wildcards/*"
96 + "/login/*",
97 + "https://example.org/login/*"
95 95   ],
96 - "webOrigins": ["+"],
97 - "bearerOnly": false,
98 - "consentRequired": true,
99 - "standardFlowEnabled": true,
100 - "implicitFlowEnabled": true,
101 - "directAccessGrantsEnabled": false,
99 + "webOrigins":["http://localhost:8080","https://example.org","+"],
100 + "bearerOnly": False,
101 + "consentRequired": True,
102 + "standardFlowEnabled": True,
103 + "implicitFlowEnabled": False,
104 + "directAccessGrantsEnabled": False,
102 102   "attributes": {
103 103   "contacts": "first.contact@example.com; second.contact@example.com"
104 - }
107 + },
108 + "defaultClientScopes": ["openid","profile","email","roles"],
109 + "optionalClientScopes": ["team","group"]
105 105   }' |
106 106  
107 107  # Pretty print the JSON response
Table of content