Add documentation for configuring the home realm identifier #6037
There are no files selected for viewing
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,27 @@ | ||
| The home realm identifier is a unique value that identifies a connection when routing users directly to a specific external IdP during login. When a user initiates login, your application can include this identifier as the `fidp` query parameter in the authorization request, which causes {{ product_name }} to skip the login page and route the user directly to the specified external IdP. | ||
|
Check warning on line 1 in en/includes/guides/fragments/manage-connection/home-realm-identifier.md
|
||
|
|
||
| To configure the home realm identifier: | ||
|
|
||
| 1. On the {{ product_name }} Console, click **Connections** and select the relevant connection. | ||
|
|
||
| 2. Go to the **Advanced** tab of the selected connection. | ||
|
|
||
| 3. Enter a unique identifier in the **Home Realm Identifier** field. | ||
|
|
||
| {: width="600" style="display: block; margin: 0; border: 0.3px solid lightgrey;"} | ||
|
|
||
| 4. Click **Update** to save the changes. | ||
|
|
||
| Once configured, use this identifier in your application's authorization request as follows: | ||
|
|
||
| ```bash | ||
| https://<host_name>/t/<org_name>/oauth2/authorize? | ||
| response_type=code | ||
| &client_id=<client_id> | ||
| &redirect_uri=<redirect_uri> | ||
| &scope=openid | ||
| &fidp=<home_realm_identifier> | ||
| ``` | ||
|
|
||
| !!! note | ||
| When the `fidp` parameter is provided, {{ product_name }} bypasses the login page and directly initiates the authentication flow with the matching external IdP. | ||
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.