2025 February Release

Configuration of an Arbitrary OpenID Connect Identity ProviderPermanent link for this heading

To carry out the necessary configuration steps, please refer to the corresponding third-party documentation.

The following claims must be provided in the ID token:

  • email
  • given_name
  • family_name

The email claim must contain the user’s e-mail address, which is used for the Fabasoft Cloud log-in.

The identity provider must publish a wellknown URL (see https://openid.net/specs/openid-connect-discovery-1_0.html: new window) at the following endpoint:

<issuer>/.well-known/openid-configuration

Note: Some identity providers use different names for the issuer URL, for example authority URL.