Authentication of users with auth0.com

Morten · August 11, 2022, 6:08am

Hi

I have installed Squidex on Azure - and I am really impressed with this

Next step - before going into production - I need to setup authentication of users with auth0.com

I have setup the following settings (using the configuration tab for the azure app-service)
IDENTITY__OIDCCLIENT = ClientID for the app in Auth0 ( eg. “5RDpY3R3cG3afgf2qLUx8f3UgVpemkXm”)
IDENTITY__OIDCNAME = “OIDC”
IDENTITY__OIDCRESPONSETYPE = “Code”
DENTITY__SECRET = Secret for the app in Auth0 ( eg. “m_BTwg_tnCBPPuOd_6Ui6re3f24TaJtuVixXj4eQvXaSYLeUOYVX”)
IDENTITY_OIDCAUTHORITY = our auth0 domain (eg . “ourdomain.eu.auth0.com”)

Following the above changes, I have restarted the app.

But nothing changes - I am still presented with the built-in user/pw singing.

What am I missing ?

Sebastian · August 11, 2022, 9:33am

An underscore in the latest environment variable and an “I” in the one above.

Morten · August 11, 2022, 1:57pm

Thank you @Sebastian !

That fixed some of the problem - but it seems that I made another configuration error.

When I click on then OIDC-signin - I get an errormessage (‘operation failed’) - the link is something like https://xxx.azurewebsites.net/identity-server/account/external?returnurl=%2Fidentity-server%2Fconnect%2Fauthorize%3Fclient_id%3Dsquidex-frontend%26redirect_uri …

the error is something like this "“message”: "IDX20803: Unable to obtain configuration from: \u0027wt-map.eu.auth0.com/.well-known/openid-configuration\u0027.","

but https://wt-map.eu.auth0.com/.well-known/openid-configuration exists - what could cause this error ?

Sebastian · August 11, 2022, 2:25pm

I think the authority ( IDENTITY_OIDCAUTHORITY) needs to be a URL.

Morten · August 11, 2022, 10:59pm

@Sebastian once again - you are right

to summarize :

in order to get OIDC to work with AUTH0 - you need to do the following

create app in auth0

Application Type= “regular Web Application”
Token Endpoint Authentication Method = “Post”
Allowed Callback URLs = “https://[your domain]/signin-oidc”

In Squidex configuration:
set the following parameters

"name": "IDENTITY__OIDCAUTHORITY",
"value": "https://XXX.eu.auth0.com",

"name": "IDENTITY__OIDCCLIENT",
"value": "5RDpY3R3ul1xasdasdUx8f3UgVpemkXm" (clientname from Auth0)

"name": "IDENTITY__OIDCNAME",
"value": "SSO" (whatevet text you want on the signinpage)

"name": "IDENTITY__OIDCRESPONSETYPE",
"value": ""

"name": "IDENTITY__SECRET",
"value": "m_BTwg_tnCBPasdsad6UiCYjn3mJKCExcvwEkaJtuVixXj4eQv34asdYVX" (secret from Auth0)

Thank you for a great application !

Sebastian · August 12, 2022, 8:53am

If you want, you can contribute with a short article (some screenshots always help) for the docs: https://github.com/squidex/squidex-docs2 with a PR

Morten · August 14, 2022, 8:53pm

should it be an article here ?

Sebastian · August 15, 2022, 6:32am

This is the images folder. I would say somewhere over there: https://github.com/Squidex/squidex-docs2/tree/master/01-getting-started/installation