Using Auth0 as an IdP¶

Follow the instructions below to use Auth0 as the Identity Provider (IdP) to authenticate the APIs that belong to a specific Organization:

Step 1 - Create an Organization¶

For testing purposes let's create an organization named org1.

If you have not created the user already, create a user.

Create an application.

Let's create an application as My App.
Configure the application.

Configure the organization settings that correspond to the application.
- Define the type of users that will log in to this application - Individuals

Access the endpoints that correspond to the application, which is available in the Advanced Settings section.
Follow the instructions outlined in Customize Configurations. These instructions will guide you through the process of acquiring the values.yaml file. Open the values.yaml file.
Update the IDP related configurations in the idp section.
Create a K8s Secret with retrieved clientId and clientSecret from Step 4 with name apk-idp-secret.
```
 idp:
   issuer: ""
   jwksEndpoint: ""      
   usernameClaim: ""
   organizationClaim: ""
```
- organizationClaim - This should always be org_id.
- Update all other values based on the Endpoint details that you came across in Step 6.1.

FormatExample

helm install <helm-chart-name> .

helm install apk-test .

Open Postman and create a new request to generate the auth code token.
Navigate to the Authorization tab of the request.
Make sure that the token generation call has the same information that was entered in the Helm Chart in Step 6.
- Auth URL
- Access Token URL
- Client ID
- Client Secret
- Username
- Password
- CallBack Url
- Scopes - (rest API related scopes + openid)
Click Get New Access Token.
You will receive two tokens, namely the access token and ID token, when the token call is successful.
Copy the ID token that you see listed as the id_token.

Use the JWT token that you received in the previous step to invoke the system APIs.