Last modified by messines on 2022/05/25 10:11
From version 5.1
edited by messines
on 2021/03/18 12:17
Change comment: There is no comment for this version
To version 9.1
edited by messines
on 2021/11/15 14:38
Change comment: There is no comment for this version

Summary

Details

Page properties
Content
... ... @@ -19,8 +19,12 @@
19 19  1. save your registration access token for further modifications of your client
20 20  1. use the token to call the create endpoint
21 21  
22 -Note that a Jupyter Notebook notebook is available in the Drive of this collab to help you create and modify your OIDC client. Its name is: **//Managing an OpenID Connect client.ipynb//** [add link]
22 +==== Easiest way to create a client ====
23 23  
24 +A live exemple of client ID creation is available here on our lab, you can perfectly use this notebook to create your client, the next steps in this documentation reproduce the content of the notebook. The easiest solution as a user is to use this notebook to create a client and avoid human error while executing curl request manually.
25 +
26 +[[https:~~/~~/lab.ebrains.eu/user/user-redirect/lab/tree/shared/Collaboratory%20Community%20Apps/Managing%20an%20OpenID%20Connect%20client.ipynb>>https://lab.ebrains.eu/user/user-redirect/lab/tree/shared/Collaboratory%20Community%20Apps/Managing%20an%20OpenID%20Connect%20client.ipynb]]
27 +
24 24  === Ask for developer accreditation ===
25 25  
26 26  To be authorize to create an OIDC client you have to be accredited as developer.
... ... @@ -83,25 +83,26 @@
83 83  curl -X POST https://iam.ebrains.eu/auth/realms/hbp/clients-registrations/default/ \
84 84   -H "Authorization: Bearer ${clb_dev_token}" \
85 85   -H 'Content-Type: application/json' \
86 - -d '{
87 - "clientId": "my-awesome-client",
88 - "name": "My Awesome App",
90 + -d '{ "clientId": "your_client_id",
91 + "name": "Collaboratory workshop demo client edited",
89 89   "description": "This describes what my app is for end users",
90 - "rootUrl": "https://root.url.of.my.app",
91 - "baseUrl": "/relative/path/to/its/frontpage.html",
93 + "rootUrl": "https://example.org",
94 + "baseUrl": "https://example.org",
92 92   "redirectUris": [
93 - "/relative/redirect/path",
94 - "/these/can/use/wildcards/*"
96 + "/login/*",
97 + "https://example.org/login/*"
95 95   ],
96 - "webOrigins": ["+"],
97 - "bearerOnly": false,
98 - "consentRequired": true,
99 - "standardFlowEnabled": true,
100 - "implicitFlowEnabled": true,
101 - "directAccessGrantsEnabled": false,
99 + "webOrigins":["http://localhost:8080","https://example.org","+"],
100 + "bearerOnly": False,
101 + "consentRequired": True,
102 + "standardFlowEnabled": True,
103 + "implicitFlowEnabled": False,
104 + "directAccessGrantsEnabled": False,
102 102   "attributes": {
103 103   "contacts": "first.contact@example.com; second.contact@example.com"
104 - }
107 + },
108 + "defaultClientScopes": ["openid","profile","email","roles"],
109 + "optionalClientScopes": ["team","group"]
105 105   }' |
106 106  
107 107  # Pretty print the JSON response
Table of content