|
|
|
---
|
|
|
|
title: 'Auth0'
|
|
|
|
description: 'Learn how to configure Auth0 as an identity provider for NocoDB.'
|
|
|
|
tags: ['SSO', 'Auth0', 'SAML']
|
|
|
|
keywords: ['SSO', 'Auth0', 'SAML', 'Authentication', 'Identity Provider']
|
|
|
|
---
|
|
|
|
|
|
|
|
:::warning
|
|
|
|
SSO is available under private beta for self hosted enterprise customers. Please reach [**out to us**](https://calendly.com/nocodb) for early access.
|
|
|
|
:::
|
|
|
|
|
|
|
|
|
|
|
|
This article briefs about the steps to configure Auth0 as Identity service provider for NocoDB
|
|
|
|
|
|
|
|
### NocoDB, Retrieve `SAML SSO` Configuration details
|
|
|
|
1. Go to `Account Settings`
|
|
|
|
2. Select `Authentication (SSO)`
|
|
|
|
3. Click on `New Provider` button
|
|
|
|
4. On the Popup modal, Specify a `Display name` for the provider; note that, this name will be used to display the provider on the login page
|
|
|
|
5. Retrieve `Redirect URL` & `Audience / Entity ID`; these information will be required to be configured later with the Identity Provider
|
|
|
|
|
|
|
|
![SAML SSO Configuration](/img/v2/account-settings/SSO-1.png)
|
|
|
|
![SAML SSO Configuration](/img/v2/account-settings/SAML-2.png)
|
|
|
|
![SAML SSO Configuration](/img/v2/account-settings/SAML-3.png)
|
|
|
|
|
|
|
|
|
|
|
|
### Auth0, Configure NocoDB as an Application
|
|
|
|
1. Access your [Auth0 account](https://auth0.com/)
|
|
|
|
- navigate to `Applications` > `Create Application`.
|
|
|
|
2. In the `Create Application` modal,
|
|
|
|
- choose `Regular Web Application`
|
|
|
|
- click `Create`
|
|
|
|
3. Upon successful creation, you will be directed to the `Quick Start` screen.
|
|
|
|
- Go to the `Addons` tab.
|
|
|
|
- Enable `SAML2 Web App`
|
|
|
|
4. On the `SAML2 Web App` modal,
|
|
|
|
- Paste `Redirect URL` copied in step above into `Application Callback URL` field
|
|
|
|
- In Settings, retain `nameIdentifierProbes` as `["http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"]`; remove other probes if any
|
|
|
|
```json
|
|
|
|
{
|
|
|
|
"nameIdentifierProbes": [
|
|
|
|
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
|
|
|
|
]
|
|
|
|
}
|
|
|
|
```
|
|
|
|
- Click `Enable` to save the settings
|
|
|
|
|
|
|
|
5. On the `Settings` tab,
|
|
|
|
- move to `Advanced Settings` > `Endpoints` > `SAML` section,
|
|
|
|
- copy the SAML `Metadata URL`
|
|
|
|
|
|
|
|
[//]: # (3. Upon successful creation, you will be directed to the `Quick Start` screen. )
|
|
|
|
[//]: # ( - Go to the `Settings` tab.)
|
|
|
|
[//]: # ( - Paste `Redirect URI` copied in step above into `Allowed Callback URLs` field)
|
|
|
|
[//]: # ( - `Save`)
|
|
|
|
|
|
|
|
|
|
|
|
### NocoDB, Configure Auth0 as an Identity Provider
|
|
|
|
1. Go to `Account Settings` > `Authentication` > `SAML`
|
|
|
|
2. Insert `Metadata URL` retrieved in step above; alternatively you can configure XML directly as well
|
|
|
|
3. `Save`
|
|
|
|
|
|
|
|
![SAML SSO Configuration](/img/v2/account-settings/SAML-4.png)
|
|
|
|
|
|
|
|
For Sign-in's, user should be able to now see `Sign in with <SSO>` option.
|
|
|
|
|
|
|
|
![SAML SSO Configuration](/img/v2/account-settings/SSO-SignIn.png)
|
|
|
|
|
|
|
|
:::note
|
|
|
|
Post sign-out, refresh page (for the first time) if you do not see `Sign in with <SSO>` option
|
|
|
|
:::
|