Learnifier supports Single Sign On using OpenID Connect so that learners and administrators can be logged in against an OpenID Provider.
Support exists in Learnifier for the hybrid flow and the authorization code flow.
Setup required on the customer side
You need to set up Learnifier as a OpenID Client in your OpenID Provider.
First determine where the OpenID Discovery endpoint is. If the endpoint is https://accounts.google.com/ then the following should provide with discovery information https://accounts.google.com/.well-known/openid-configuration. Make note of the endpoint.
The information you need to setup as the provider is
- Authorized redirect URI. This value needs to be set to https://(your-learnifier-domain)/login/auth/oic/callback. So if you are running Learnifier under example.learnifier.com the URI should be https://example.learnifier.com/auth/oic/callback . Make sure that the url is a https url.
- Auhtorization flow. If there is an option for this set it to authorization code flow(recommended) or hybrid flow.
If you are setting this up against Google G Suite you will do the steps above at https://console.developers.google.com and adding a client under Credentials and OAuth 2.0 client IDs.
When setting up the client you should receive a ClientID and a client Secret together with the discovery endpoint. Make sure you copy them exactly and send them to firstname.lastname@example.org and describe that you want to setup OpenID Connect and which Learnifier domain name we are talking about.
If your provider require us to send any other scopes than openid,profile,email please provide that in the e-mail as well.
When we receive the information we should be able to set this up. After we have done basic validation that the information is correct we will enable it for your domain.