This section gives a general overview of creating identity providers (IdPs). For more details on connecting your applications with specific identity provider types, see the following sections:
- Enterprise identity providers
- Social identity providers
- Legal identity providers
- Database identity providers
In this example, we are creating an inline identity provider.
-
Log in to AM Console.
-
Click Settings > Providers.
-
In the Providers page, click the plus icon
.
-
Choose an Inline identity provider type and click Next.
Inline IdP
-
Give your identity provider a Name.
-
Add as many users as required, by clicking Add User for each new user, then click Create.
Add user to IdP
{% code overflow="wrap" %}
curl -H "Authorization: Bearer :accessToken" \ -H "Content-Type:application/json;charset=UTF-8" \ -X POST \ -d '{ "external": false, "type": "inline-am-idp", "configuration": "{\"users\":[{\"firstname\":\"John\",\"lastname\":\"Doe\",\"username\":\"johndoe\",\"password\":\"johndoepassword\"}]}", "name": "Inline IdP" }' \ http://GRAVITEEIO-AM-MGT-API-HOST/management/organizations/DEFAULT/environments/DEFAULT/domains/:securityDomainPath/identities
{% endcode %}
Custom IdP overview
AM is designed to be extended based on a pluggable module architecture. You can develop your own identity provider using a plugin, and provide an authentication method to register your users so they can use AM.
The fastest way to test your newly created identity provider is to request an OAuth2 access token, as described in ID Token. If you successfully retrieve an access token, your identity provider is all set.