Configuring Auth0 Authentication
Auth0 provides an enterprise SAAS identity provider.
Set up Auth0 as your IDP
To set up Auth0 as your IDP, you complete some steps in Auth0 and then in Wayfinder, as shown below.
1 - Configure Auth0
To configure Auth0:
-
If you don't have one, sign up for an account from the Auth0 home page.
-
From the drop-down in the top left of the Auth0 dashboard note your auth0 Tenant (e.g. 'my-org') and Region (e.g. 'eu' or 'us').
-
From the dashboard side menu choose Applications, and then Create Application.
-
Give the application a name (e.g. 'wayfinder') and choose Regular Web Application.
-
Once provisioned click the Settings tab.
-
Note the Client ID and Client Secret for your new application.
-
Scroll down to Allowed Callback URLs and add your Wayfinder API URL, for example:
https://api.wf.yourorg.io/oauth/callback
-
Click the down arrow next to Advanced Settings.
-
Click the OAuth tab and ensure that:
- JsonWebToken Signature Algorithm is set to RS256
- OIDC Conformant is ON.
-
Use the noted tenant, region, client ID, and client secret to configure Wayfinder.
2 - Configure Wayfinder
Once you've created your application as shown above, use the values you noted to configure Wayfinder.
To complete the Auth0 configuration in Wayfinder:
In Wayfinder's web interface:
- Select Admin, navigate to Access > SSO, and then click Connect for your chosen IDP provider.
- Click Configure, and then provide the required information.
- Click Validate and test.
- When the validation is complete, click Connect.
If you change your IDP configuration to a different provider, any user who is not associated with the same email address in the new provider will lose access to their Wayfinder account.
Configure users in Auth0
To configure a user:
-
From the Auth0 dashboard side menu, select User Management.
-
To create each user:
-
Create the user by selecting Users.
-
Create a role by selecting Roles.
-
Add the role to the user.
-