To create and manage your LibAuth profiles, go to LibApps > Admin > LibAuth Authentication.
Before setting up your new OAuth 2configuration, you'll want to work with your IT staff on the following:
- We support the Access Code grant type for user logins.
- When configuring your OAuth 2 application, use the following redirect URL for your region:
- European customers: https://eu.libauth.com/login/oauth2
- Canadian customers: https://ca.libauth.com/login/oauth2
- All other customers: https://libauth.com/login/oauth2
- Obtain the Client Identifier and Client Secret from the OAuth 2 application you've set up to use with LibAuth.
- Obtain the Authorization URL and Access Token URL endpoints for your OAuth 2 system.
- Obtain the User Resource URL endpoint that returns user attributes for the specific logged in user.
- Obtain the attributes used for First Name, Last Name, and Email from your IT staff.
Adding a new OAuth 2 configuration
- If you have not yet created a LibAuth configuration, skip to Step 2. Otherwise, click on the Add Configuration button to create another one.
- Below the Search for Your Institution dropdown, click on the Manual Configuration link.
- Select OAuth 2 as your authentication protocol.
- Enter server info and parameters provided by your IT staff.
- Client identifier: the client ID from your OAuth 2 application.
- Client secret: the client secret from your OAuth 2 application.
- Authorization URL: the authorization URL endpoint for your OAuth 2 system. This must start with https://.
- Access token URL: the access token URL endpoint for your OAuth 2 system. This must start with https://.
- User resource URL: the API endpoint that returns user attributes for the specific logged in user. This must start with https://.
- Configure the attributes released from your server.
- Enter the field name of the attribute that contains the user's first name. (Optional, but recommended.)
- Enter the field name of the attribute that contains the user's last name. (Optional, but recommended.)
- Enter the field name of the attribute that contains the user's email address. (Required.)
- Give your configuration a name.
- If you'd like, you can also provide notes or details about this configuration for your reference.
- Select "Yes" or "No" to indicate if you would like to use your LibAuth configuration to sign into LibApps. This will give staff the option of signing in using your authentication system, or with their LibApps username and password.
- Click the Save Configuration button.