Applications

LabShare Auth applications (aka OpenID Connect Clients) can be registered using the admin Client REST APIs or through the Auth UI’s Apps dashboard.

The following application types are currently supported:

• web
• native
• saml
• wsfed

See: Open ID Connect Client Libraries for a list of third-party libraries that can be used to connect to LabShare Auth’s Open ID Connect provider.

Single Page Apps

LabShare Auth supports the Implicit Grant OAuth2 flow for Single Page Applications.

Angular/AngularJS

See: Angular Auth OIDC Client

Server-side Web Applications

LabShare Auth supports the Authorization Code Grant OAuth2 flow for traditional server-side web applications.

• Register a “web” Client on the Applications Dashboard of the Auth UI.
• Obtain the new application’s client ID and client secret and store them securely on the web application server.
• Use the GET /auth/{tenantID}/authorize endpoint to obtain an Authorization Code and then exchange it for an access token via the POST /auth/{tenantID}/token endpoint.

See: Open ID Client

Java

See: Open ID Connect Client Libraries

SAML2

See: SAML2 IdP configuration