Openid AzureAD
m (Hans moved page Openid to Openid AzureAD: Better name)
No edit summary
Line 1: Line 1:
To protect your turnkey application with your active directory you can do so via Azure AD.
You can protect your Turnkey application with your active directory via Azure AD.


1.      You should already have a Turnkey-webApp
1.      You should already have a Turnkey web app


2.      You should have sufficient rights to register web-apps in your organizations Azure AD
2.      You should have sufficient rights to register web apps in your organization's Azure AD


Login into Portal Azure, go to Azure Active Directory:
Login into Portal Azure and go to Azure Active Directory:
[[File:2018-05-28 13h25 47.png|none|thumb|764x764px]]
[[File:2018-05-28 13h25 47.png|none|thumb|764x764px]]
Make a copy of your AD name (the authority name).
Make a copy of your AD name (the authority name).
Line 11: Line 11:
Then App Registrations, New Application registration:
Then App Registrations, New Application registration:
[[File:2018-05-28 13h27 18.png|none|thumb|828x828px]]
[[File:2018-05-28 13h27 18.png|none|thumb|828x828px]]
Enter a name for your application (just an easy read identifier)
Enter a name for your application (just an easy-read identifier)


Also enter the sign on url to your Turnkey – in my case: https://hkscratch.azurewebsites.net/Account/Login
Also enter the sign on URL to your Turnkey – in my case: https://hkscratch.azurewebsites.net/Account/Login
[[File:2018-05-28 13h28 39.png|none|thumb|704x704px]]
[[File:2018-05-28 13h28 39.png|none|thumb|704x704px]]
You will get this screen with important information:
You will get this screen with important information:
[[File:2018-05-28 13h30 41.png|none|thumb|604x604px]]
[[File:2018-05-28 13h30 41.png|none|thumb|604x604px]]
Copy the application ID
Copy the application ID.


You now have the Application ID Guid and the Authority name. We will now assign these to your application via the Turnkey-portal:
You now have the Application ID Guid and the Authority name. We will now assign these to your application via the Turnkey-portal:
Line 27: Line 27:
Remember to save.
Remember to save.


Your application now has a OpenId button and when you click it you are taken to the OpenId-authority for verification:
Your application now has an OpenId button and when you click it, you are taken to the OpenId-authority for verification:
[[File:2018-05-28 13h34 06.png|none|thumb|594x594px]]
[[File:2018-05-28 13h34 06.png|none|thumb|594x594px]]
[[File:2018-05-28 13h34 52.png|none|thumb|384x384px]]
[[File:2018-05-28 13h34 52.png|none|thumb|384x384px]]
If this was the first login a new SysUser object was created - you are done with Single Sign On (SSO) via OpenId.
If this was the first login, a new SysUser object was created - you are done with Single Sign On (SSO) via OpenId.
[[Category:MDriven Turnkey]]
[[Category:MDriven Turnkey]]
[[Category:Authentication]]
[[Category:Authentication]]

Revision as of 07:09, 15 February 2023

You can protect your Turnkey application with your active directory via Azure AD.

1.      You should already have a Turnkey web app

2.      You should have sufficient rights to register web apps in your organization's Azure AD

Login into Portal Azure and go to Azure Active Directory:

2018-05-28 13h25 47.png

Make a copy of your AD name (the authority name).

Then App Registrations, New Application registration:

2018-05-28 13h27 18.png

Enter a name for your application (just an easy-read identifier)

Also enter the sign on URL to your Turnkey – in my case: https://hkscratch.azurewebsites.net/Account/Login

2018-05-28 13h28 39.png

You will get this screen with important information:

2018-05-28 13h30 41.png

Copy the application ID.

You now have the Application ID Guid and the Authority name. We will now assign these to your application via the Turnkey-portal:

2018-05-28 13h31 45.png

Paste your values in – then Send Settings And Restart:

2018-05-28 13h33 02.png

The value for OpenId-authority for AzureAD has the form of https://login.microsoftonline.com/<your authority>/

Remember to save.

Your application now has an OpenId button and when you click it, you are taken to the OpenId-authority for verification:

2018-05-28 13h34 06.png
2018-05-28 13h34 52.png

If this was the first login, a new SysUser object was created - you are done with Single Sign On (SSO) via OpenId.

This page was edited more than 11 months ago on 02/10/2024. What links here