Gluu Server as IDP


Step 1: Set Up Gluu Server as OAuth Provider

  • Navigate to the plugin configuration page, click the "Add New Provider" button (located either in the middle or top-right corner), select Gluu Server as the application, and copy the callback URL from the plugin and keep it handy, as you'll need it to configure Gluu Server as the OAuth provider.
  • OAuth / OPenID Single Sign On (SSO) using ADFS, ADFS Management
  • Login to your Gluu Server.
  • Select OpenID Connect > Clients from the left-hand side menu and click on Add Client.
  • OAuth/OpenID/OIDC Single Sign On (SSO), Gluu Server SSO Login Add Client
  • Configure Standard Settings using below details.
  • Client Name: Enter the client application name e.g. JIRA
    Authentication method for the Token Endpoint: Select client_secret_post from the list.
    Redirect Login URI: Enter the Callback URL provided in the plugin.
    Scopes: Select openid, profile and email from the list.
    Response Type: Select code, token and id_token.
    Grant Type: Select authorization_code from the list.
    Post Logout Redirect URIs: Enter URL where you want to redirect after Logout. e.g. JIRA Base URL.
    OAuth/OpenID/OIDC Single Sign On (SSO), Gluu Server SSO Login App Settings
  • Once all the settings are done click on Update to save your changes.
  • Copy generated Client ID and Secret.
  • Switch to Advanced Settings for configuring Front Channel Logout URI. Enter logout URI as <Base_URL>/plugins/servlet/oauth/logout
  • OAuth/OpenID/OIDC Single Sign On (SSO), Gluu Server SSO Login Front Channel Logout
  • Click on Update to reflect your settings.
  • Now, we need to setup Front Channel Logout URI for oxTrust. Browse to OpenID Connect > Clients and select oxTrust Admin GUI from the clients list.
  • OAuth/OpenID/OIDC Single Sign On (SSO), Gluu Server SSO Login Set Logout For Oxtrust
  • Go to Advanced Setting section and configure Front Channel Logout URI as <Base_URL>/plugins/servlet/oauth/logout.

    OAuth/OpenID/OIDC Single Sign On (SSO), Gluu Server SSO Login oxTrust Front Channel Logout
      Note: The Front Channel Logout URI will be the same for your Atlassian app and oxTrust.