Registering an App for Single Sign-On (SSO) and OAuth

Our platform supports Single Sign-On (SSO) and OAuth integration, enabling secure authentication and user management.

Step 1: Registering an App or Web API

To integrate with OAuth, register your app or web API by following these steps:

1. Sign in to the Azure Portal.

2. Navigate to Microsoft Entra (Active Directory).

3. Select App registrations > New registration.

Azure01.png

4. Provide a Name for your application.

5. Choose the Supported account types that match your authentication needs.

6. Select web as the platform and the following Redirect URI https://web.simur.com/oauth/callback.

7. Click Register.

Step 2: Configuring Client Secret for Simur 

Since Simur currently supports client secrets rather than certificates, follow these steps to generate and use a secret:

1. In the Azure Portal, navigate to App registrations.

2. Select your registered app.

3. Go to Certificates & secrets.

4. Under Client secrets, click New client secret.

Azure02.png

5. Provide a description and set an expiration period.

6. Click Add.

7. Copy and securely store the generated secret, as it will not be visible again.

Use this client secret in your Simur OAuth configuration to authenticate securely.

 

Step 3: Configuring OAuth Settings in Simur

After registering the application and setting up the client secret, configure the necessary OAuth settings in Simur.

Accessing the OAuth Settings

To access the OAuth settings, follow these steps:

  1. Log in to your Simur web platform and click on Settings.
  2. Navigate to Portfolios and select the desired portfolio.
  3. Open the dropdown menu and click on Access Management

OUATH.png

Key Parameters for Integration

Use the following parameters for OAuth integration:

  • Client ID: <type your ‘Application (Client) ID’ from Azure>
  • Client Secret: <type the value of the generated ‘secret’ in Azure>
  • Scope: openid
  • Authorization URL: <type the URL that appears as ‘OAuth 2.0 authorization endpoint (v2)’>
  • Token URL: <type the URL that appears as ‘OAuth 2.0 token endpoint (v2)’>
  • User Info Endpoint URL <type URL that appears as Microsoft Graph Api endpoint>: https://web.graph.microsoft.com/oidc/userinfo

To access to these parameters follows these steps in Azure:

  1. Go to Overview section.
  2. Take de Application (client) ID parameter value.
  3. Click on Endpoints.
  4. Take the values of the parameters in the windows.

Azure04.png

Enabling Access Management in Simur

To successfully use OAuth integration, ensure that enable Access Management is enabled in your Simur Studio settings.

Related to