Guide: Information needed to connect an OIDC Identity Broker
To help us link your OpenID Connect (OIDC) identity broker to Signhost, please provide the following details. This will ensure a smooth and secure integration.
What you need to provide:
Authority URL
The base URL of your OIDC provider (e.g., https://yourdomain.com/api/oidc/).Logo
Your organization’s logo in SVG format.Client ID
The unique identifier generated when you register our application with your OIDC provider.Client Secret
The secret associated with the Client ID, used for secure authentication.Scopes
Specify the OIDC scopes you wish to allow (e.g., openid, email, profile). If additional scopes are required for your use case, please include them.Friendly name
That will be shown to the signer in our sign UI.
What we will provide:
All other configuration details, including:
Short Provider Name (to add this specific provider as verification method for a signer)
Authentication Scheme
Signin and Signout URLs (see below)
Please ensure the following URLs are allowlisted in your OIDC provider configuration:
Signin URL:
We will provide you with the exact URL to whitelist for authentication callbacks.Signout URL:
We will provide you with the exact URL to whitelist for sign-out callbacks.
These URLs must be registered in your OIDC provider’s settings to allow proper redirection during login and logout processes. We will generate these after receiving your OIDC information.
Security
We require PKCE security during authorization.