Identity Provider Configuration
Pomerium provides single-sign-on authentication and user identity details by integrating with your downstream Identity Provider (IdP) of choice. That authentication integration is achieved using OAuth2, and OpenID Connect (OIDC).
The steps for integrating Pomerium with an IdP are specific to each provider, but they generally share the same base requirements:
- A Redirect URL pointing back to Pomerium. For example,
https://${authenticate_service_url}/oauth2/callback
.- The redirect URL will always be your Authenticate Service URL, plus
/oauth2/callback
.
- The redirect URL will always be your Authenticate Service URL, plus
- A Client ID and Client Secret.
The subsequent pages in this section provide specific instructions for the IdPs Pomerium supports.