Downloaded 22 times
Uploaded byMenno de Haas
Mendix Single Sign-On OAuth 2.0 Example
The document outlines a guide for implementing single sign-on (SSO) in Mendix, aimed at making the process simpler. It covers SSO basics, various protocols like SAML and OAuth, along with a practical use-case example and implementation demo including login and logout flows. Key components discussed include authentication, the architecture of the example application, and critical steps for a successful implementation.
More Related Content
![[AWS Builders] AWS 서버리스 서비스를 활용한 웹 애플리케이션 구축 및 배포 방법 - 정창호, AWS 솔루션즈 아키텍트](https://cdn.slidesharecdn.com/ss_thumbnails/5severles-191112092245-thumbnail.jpg?width=640&height=640&fit=bounds)
![[AWS Builders] AWS 네트워크 서비스 소개 및 사용 방법 - 김기현, AWS 솔루션즈 아키텍트](https://cdn.slidesharecdn.com/ss_thumbnails/1network-191112092246-thumbnail.jpg?width=640&height=640&fit=bounds)
Similar to Mendix Single Sign-On OAuth 2.0 Example
![[POSS 2019] MicroServices authentication and authorization with LemonLDAP::NG](https://cdn.slidesharecdn.com/ss_thumbnails/pre-poss2019-webservices-authentication-lemonldapng-191216145725-thumbnail.jpg?width=640&height=640&fit=bounds)
Mendix Single Sign-On OAuth 2.0 Example
- 1. Single Sign-On inMendix How to keep it simple? Menno de Haas Mendix Expert / Team Lead WebFlight
- 2. GOAL Make single signon in Mendix a little less scary…
- 3. Outline • SSO basics •Intro use-case • Implementation • Discussion
- 4. SSO basics What doyou need to know?
- 5.
- 6. SAML vs OAuthvs OpenID Connect
- 7. WHY is OAuthso hard?
- 8. OAuth 2.0 parties Clientapplication Resource server Resource owner Authorization server
- 9. Intro use-case A simpleexample…
- 10. Architecture InvoiceApp Invoice API Resource owner= ME Authorization server Client application Resource server
- 11. What is NOTin the demo? • How to configure your authorization server? • How to choose the appropriate OAuth 2.0 flow? • How to work with states during the login flow? • How to work with JSON Web Tokens? • How to validate tokens and scopes at API endpoints?
- 12. What IS inthe demo? • How to configure a login (authorization code) flow? • How to configure a logout flow?
- 13.
- 14. Login flow Mx StaticHTML Mx REST API Mx SPA Auth0 IdP login.html Initiate login Login screen Login screen User consentUser consentCallback index.html
- 15. Login flow Mx StaticHTML Mx REST API Mx SPA Auth0 IdP login.html Initiate login Login screen Login screen User consentUser consentCallback index.html
- 16.
- 17.
- 18. Login flow Mx StaticHTML Mx REST API Mx SPA Auth0 IdP login.html Initiate login Login screen Login screen User consentUser consentCallback index.html
- 19.
- 20. Login flow Mx StaticHTML Mx REST API Mx SPA Auth0 IdP login.html Initiate login Login screen Login screen User consentUser consentCallback index.html
- 21.
- 22. Logout flow Nanoflow Removesession Remove session Redirect to homepage Mx SPA Auth0 IdP index.html
- 23.
- 24.
Editor's Notes
- #2 Voorbereidingen: Revoke access account Define roles voor user
- #7 Kort verschillen aanstippen. Aangeven dat met OAuth en Open ID Connect werken.
- #8 OAuth 2.0 implementation flexible No default library Mendix Escape Mendix application and return
- #9 Vertel over verschillende use cases Oauth 2.0: waarom gebruik je dit?
- #13 Afsluiten met waar je deze informatie wel kunt vinden.