Setting up a Direct Link for User Authentication with an External IDP

Identity Service enables you to configure a URL parameter that allows you to authenticate users with your external IDP, providing them with a seamless SSO experience.

For example, https://brand.com/<suffix>/?external_idp=<idp>

where idp is the alias of your External IDP.

Note: If your External IDP is added using CloudBlue Commerce Control Panel, the alias will be saml. If it is added through the Keycloak administration panel, the alias is what was configured by the administrator.

To enable the link for user authentication with your External IDP:

  1. Enable the Identity Service.

  2. Select an existing brand for which you plan to set up the integration.

  3. Update the security realm authentication flow in IDP. For each brand where the functionality is required, run the following command:

    kubectl exec <idp_pod_name> -- curl -k -v https://localhost:8081/rest/application/testProbe/upgradeSingle?param=sr2

    where 2 is the brand id.

© 2024 Ingram Micro, Inc. All Rights Reserved. Privacy Policy, Terms of Use and Legal

CloudBlue, an Ingram Micro business, uses cookies to improve the usability of our site. By continuing to use this site and/or logging in you are accepting the use of these cookies. For more information, visit our Privacy Policy.
I accept