- Properties specific to OpenIDParameters variables
- .ConfigurationURL property
OpenIDParameters (Type of variable) In french: OpenIDParamètres
The type OpenIDParameters is used to define all the advanced features of an authentication for OpenID. The characteristics of this authentication for OpenID can be defined and changed using different WLanguage properties. Remark: For more details on the declaration of this type of variable and the use of WLanguage properties, see Declaring a variable.
OpenIDParams is OpenIDParameters
OpenIDParams.ConfigurationURL = "https://accounts.google.com/.well-known/OpenID-configuration"
OpenIDParams.ClientID = "1060349503186-pc7ahme???????7gk59q.apps.googleusercontent.com"
OpenIDParams.ClientSecret = "oBTQL52?????y9-76MpiM"
OpenIDParams.RedirectionURL = "http://localhost:9846"
MonToken is AuthToken = AuthIdentify(OpenIDParams)
IF ErrorOccurred THEN
Error(ErrorInfo())
RETURN
END
MonIdentité is OpenIDIdentity = OpenIDReadIdentity(MonToken)
IF MonIdentité.Valid THEN
Trace(MonIdentité.Email)
Trace(MonIdentité.LastName)
Trace(MonIdentité.FirstName)
END
Remarks Properties specific to OpenIDParameters variables The following properties can be used to handle the parameters of an OpenID authentication: | | | | Property name | Type used | Effect |
|---|
| ClientID | Character string | Application identifier. | | ClientSecret | Character string | Secret application identifier. | | ConfigurationURL | Character string | OpenID service description URL (see Remarks). In general, providers who offer OpenID make this URL available. It has the following format:
https://<Domaine>/.well-known/OpenID-configuration
Some examples of URLs:
https://login.windows.net/contoso.onmicrosoft.com/
.well-known/OpenID-configuration
https://accounts.google.com/.well-known/openid-configuration
https://login.salesforce.com/.well-known/openid-configuration
https://login.yahoo.com/.well-known/openid-configuration
https://login.microsoftonline.com/contoso.onmicrosoft.com/
.well-known/openid-configuration
|  New in version 28GrantType | Constant | Type of authorization available. The possible values are: - gtClientCredentials: Authentication without login window. The connection authorization is given to the application (not to the user). The token provided is an linked token to the application, allowing access to the resources of the application.
- gtAuthorizationCode (Value by Default): The connection authorization is given to the user. a login window is displayed, allowing the user to enter his login and password. The token provided is an linked token to the user.
| | RedirectionURL | Character string | URL used to redirect the result. |
.ConfigurationURL property The URLConfiguration property corresponds to a URL containing the description of the OpenID service. This description has the following format (for Google, for example)::
{
"issuer": "https://accounts.google.com",
"authorization_endpoint": "https://accounts.google.com/o/oauth2/v2/auth",
"token_endpoint": "https://oauth2.googleapis.com/token",
"userinfo_endpoint": "https://www.googleapis.com/oauth2/v3/userinfo",
"revocation_endpoint": "https://oauth2.googleapis.com/revoke",
"jwks_uri": "https://www.googleapis.com/oauth2/v3/certs",
"response_types_supported": [
"code",
"token",
"id_token",
"code token",
"code id_token",
"token id_token",
"code token id_token",
"none"
],
"subject_types_supported": [
"public"
],
"id_token_signing_alg_values_supported": [
"RS256"
],
"scopes_supported": [
"openid",
"email",
"profile"
],
"token_endpoint_auth_methods_supported": [
"client_secret_post",
"client_secret_basic"
],
"claims_supported": [
"aud",
"email",
"email_verified",
"exp",
"family_name",
"given_name",
"iat",
"iss",
"locale",
"name",
"picture",
"sub"
],
"code_challenge_methods_supported": [
"plain",
"S256"
]
}
The necessary parts are as follows: - authorization_endpoint: Authorization URL.
- token_endpoint: URL for retrieving the token.
- scopes_supported: List of information that can be retrieved.
This page is also available for…
|
|
|
|