Connecting applications with OIDC protocol - Confluence
Learn how to use OIDC protocol as IDP to connect Confluence and other applications.
Hanzo IAM can use OIDC protocol as an IDP to connect various applications. In this guide, we will use Confluence as an example to demonstrate how to use OIDC to connect your applications.
Deploy Hanzo IAM and Confluence. Note these variables:
IAM_HOSTNAME: Domain name or IP where Hanzo IAM server is deployed.Confluence_HOSTNAME: Domain name or IP where Confluence is deployed.
Step 1: Deploy Hanzo IAM and Confluence
First, deploy Hanzo IAM and Confluence.
After successful deployment, ensure the following:
- Set Confluence URL to
Confluence_HOSTNAME.
- Hanzo IAM can be logged in and used normally.
- For local
prodmode, setIAM_HOSTNAMEtohttp://localhost:8000. See production mode.
Step 2: Configure Hanzo IAM application
- Create a new Hanzo IAM application or use an existing one.
- Find a redirect URL:
- Add the redirect URL to the application:
- Add the desired provider and configure other settings accordingly.
Note Client ID and Client Secret for the next step. OIDC discovery: http://<IAM_HOSTNAME>/.well-known/openid-configuration.
Step 3: Configure Confluence
- Install the miniOrange OAuth app. In Confluence:
- Configure the app:
- Set
Selected Applicationto Custom OpenID. - Retrieve the Client ID and Client Secret from the Hanzo IAM application page.
Configure the following settings for Confluence:
Token server URL: http://IAM_HOSTNAME/oauth/tokenAuthorization server URL: http://IAM_HOSTNAME/oauth/authorizeUserInfo server URL: http://IAM_HOSTNAME/api/get-accountScopes:address phone openid profile offline_access email
Configure advanced authorization later if needed; first verify that OpenID sign-in works.
Log out of Confluence and test SSO:
How is this guide?
Last updated on