Ana içeriğe geç

Connecting applications with OIDC protocol - Confluence

Casdoor can use OIDC protocol as an IDP to connect various applications. In this guide, we will use Confluence as an example to demonstrate how to use OIDC to connect your applications.

Deploy Casdoor and Confluence. Note these variables:

  • CASDOOR_HOSTNAME: Domain name or IP where Casdoor server is deployed.
  • Confluence_HOSTNAME: Domain name or IP where Confluence is deployed.

Step 1: Deploy Casdoor and Confluence

First, deploy Casdoor and Confluence.

After successful deployment, ensure the following:

  1. Set Confluence URL to Confluence_HOSTNAME. Confluence URL
  2. Casdoor can be logged in and used normally.
  3. For local prod mode, set CASDOOR_HOSTNAME to http://localhost:8000. See production mode.

Step 2: Configure Casdoor application

  1. Create a new Casdoor application or use an existing one.
  2. Find a redirect URL: Confluence Callback
  3. Add the redirect URL to the application: Confluence Application
  4. Add the desired provider and configure other settings accordingly.

Note Client ID and Client Secret for the next step. OIDC discovery: http://<CASDOOR_HOSTNAME>/.well-known/openid-configuration.

Step 3: Configure Confluence

  1. Install the miniOrange OAuth app. In Confluence: Confluence App
  2. Configure the app: Confluence Config
  3. Set Selected Application to Custom OpenID.
  4. Retrieve the Client ID and Client Secret from the Casdoor application page.

Configure the following settings for Confluence:

  • Token server URL: http://CASDOOR_HOSTNAME/api/login/oauth/access_token
  • Authorization server URL: http://CASDOOR_HOSTNAME/login/oauth/authorize
  • UserInfo server URL: http://CASDOOR_HOSTNAME/api/get-account
  • Scopes: address phone openid profile offline_access email

Configure advanced authorization later if needed; first verify that OpenID sign-in works.

Log out of Confluence and test SSO: Confluence Login