Articles in this section
Category / Section

How to configure Zitadel OAuth login in Bold BI

Published:

Create a new project

Please refer to the following documentation and create a new project if needed. Otherwise, you can create a new application in the default project.
https://zitadel.com/docs/guides/manage/console/projects

Create a new OAuth application

Please follow the below steps to create a new application.

  1. Click the New option to create application.
    image.png
  2. Enter the application name and select the type of application as Web.
    image.png
  3. Select the Authentication method as Code.
    image.png
  4. Please enter the redirect URI.
    image.png

Redirect URI is also available in Bold BI OAuth Configuration page. For example, if you have hosted Bold BI on https://example.com and your redirect URI will be https://example.com/signin-oauth.

  1. Review the application configuration and create.

    image.png

  2. Once the application is created, client id and secret will be shown in a popup. Copy the information and save them in a secret place since you can’t get the same client secret next time.

    image.png

Zitadel OAuth Endpoints

Use the following endpoint to get the required endpoints to configure Bold BI.

https://your-zitadel-domain/.well-known/openid-configuration

  • Authorize Endpoint: https://your-zitadel-domain/oauth/v2/authorize
  • Token Endpoint: https://your-zitadel-domain/oauth/v2/token
  • Userinfo Endpoint: https://your-zitadel-domain/oidc/v1/userinfo

Configure Zitadel in Bold BI

  1. Please open https://your-domain/ums/administration/sso?view=oauth-settings or navigate to Settings -> Authentication -> OAuth 2.0.
  2. Configure the following values.
    1. Provider Name - Name of the OAuth provider.
    2. Provider Logo - Upload your logo.
    3. Authorization Endpoint - Please refer to the previous section to get the authorization endpoint.
    4. Token Endpoint - Please refer to the previous section to get the token endpoint.
    5. Userinfo Endpoint - Please refer to the previous section to get the user info endpoint.
    6. Client Id - Use the client id value from the Zitadel OAuth application.
    7. Client Secret - Use the client id value from the Zitadel OAuth application.
    8. Enable User Account Creation - Enable this if you want to automatically create a new user if the account is not yet available.
    9. User data - Map the following claim to get the proper user information.
      1. Email - email
Was this article useful?
Like
Dislike
Help us improve this page
Please provide feedback or comments
RK
Written by Ramesh Kannan
Updated
Comments (0)
Please  to leave a comment
Access denied
Access denied