Other Providers

it-directors
 
Enable Identity Provider

In order to provide External Authentication, you must create and properly configure an Identity Provider.

A. Create an Identity Provider

  1. Navigate to Administration > Identity Providers
  2. Create a New record
  3. Enter a Display Name (can be anything)
  4. Select a Provider Type
    1. Use your specific provider if listed.
    2. Use OAuth 2.0 if your provider is not listed
  5. Enter a temporary Client ID (you can't save the record without this, but will change it in a later step)
  6. Save
  7. Copy the Identity Provider Unique ID. You will need this in a later step. You will need to replace any lowercase characters with uppercase.

B. Configure provider specific values

  1. Go to the Developer Site (below) for the account.
  2. Provide the applications your system information.
  3. Enter an App ID.
  4. Enter an App Secret.
Developer Sites

Important! We no longer support external authentication with Twitter or LinkedIn. If these were configured in the past, they might still work. However, adding or updating configuration for these may no longer work.

C. Recycle App Pool

You'll need to recycle the app pool on your server immediately after enabling the Identity Provider. If Setup Admin is set to True on your User record, you will have a Restart Auth App button on your User Profile. Clicking that button will make the external authentication option available. 

System Information

You may need to provide the following values if required by Identity Provider.

Ministry Platform Installation

This is the base url for your MinistryPlatform installation ending in ministryplatform (and nothing else)

https://[YourDomain]/ministryplatform

External Login Callback URL

This callback url is created by taking the guid from the Identity Provider and adding it to the base callback url.

The [IdentityProviderUniqueID] must be replaced with the ALL UPPERCASE guid from your Identity Provider record

https://[YourDomain]/ministryplatformapi/oauth/callback/[IdentityProviderUniqueID]