Line 138:
Line 138:
<br />
<br />
−
−
==== Dolibarr application setup ====
−
The final configuration step is to create the following values in '''Home > Setup > Other Setup'''.
−
{| class="wikitable"
−
!Name
−
!Example
−
!Comment
−
!Description
−
|-
−
|<code>MAIN_AUTHENTICATION_OPENID_URL</code>
−
|See above
−
|OpenID Connect URL
−
|Composed OpenID Connect URL
−
|-
−
|<code>MAIN_LOGOUT_GOTO_URL</code>
−
|See above
−
|Identity Provider logout URL
−
|Composed IdP logout URL
−
|-
−
|<code>MAIN_AUTHENTICATION_OIDC_CLIENT_ID</code>
−
|<code>My-Super-Awesome-Client-ID-1234</code>
−
|OpenID Connect Client ID
−
|Application client ID
−
|-
−
|<code>MAIN_AUTHENTICATION_OIDC_CLIENT_SECRET</code>
−
|<code>My-Very-Hidden-Client-Secret-1234</code>
−
|OpenID Connect Client Secret
−
|Application client secret
−
|-
−
|<code>MAIN_AUTHENTICATION_OIDC_TOKEN_URL</code>
−
|<code><nowiki>https://tenant.us.auth0.com/oauth/token</nowiki></code>
−
|OpenID Connect token URL
−
|<code>/token</code> endpoint
−
|-
−
|<code>MAIN_AUTHENTICATION_OIDC_USERINFO_URL</code>
−
|<code><nowiki>https://tenant.us.auth0.com/userinfo</nowiki></code>
−
|OpenID Connect userinfo URL
−
|<code>/userinfo</code> endpoint
−
|-
−
|<code>MAIN_AUTHENTICATION_OIDC_REDIRECT_URL</code>
−
|<code><nowiki>https://dolibarr.domain.com/?openid_mode=true</nowiki></code>
−
|OpenID Connect redirect URL
−
|Dolibarr URL followed by <code>/?openid_mode=true</code>
−
|-
−
|<code>MAIN_AUTHENTICATION_OIDC_LOGIN_CLAIM</code>
−
|<code>email</code>
−
|OpenID Connect login claim
−
|OpenID Connect claim matching the Dolibarr user login. If not set or empty, defaults to <code>email</code>
−
|}
−
−
−
Source page https://github.com/Dolibarr/dolibarr/issues/22740.
===OpenID Connect using OpenID and the HTTP Basic of Apache===
===OpenID Connect using OpenID and the HTTP Basic of Apache===