Configure OpenID Connect for OAuth 2 SSO

This guide is intended for Admins setting up OAuth 2 SSO with OpenID Connect.

OpenID Connect (OIDC) is an open authentication protocol on top of the OAuth 2.0 framework. OIDC is a consumer-focused standard that enables users to access third-party websites with just one sign-on (SSO).

If you are looking for information on setting up SSO with other providers:

When you configure Single Sign-on (SSO) with OpenID Connect, your users will be able to create and sign into their Baserow accounts using OpenID Providers (OPs) such as an email service or social network to verify their identities.

Based on the authentication carried out by an authorization server, you can receive basic profile information about the end user and validate the end user’s identity.

Instance-wide admin panel, SSO, Payment by invoice, Signup rules, Audit logs are features only available for Baserow paid plans. Get in touch with us here if you’re interested in learning more about paid pricing.

Here’s how to set up OAuth 2 SSO with OpenID Connect to sign in to your Baserow account.

Set up OAuth 2 SSO with OpenID Connect

Sign in or create an account with a provider of your choice.

You must register your application with the IdP in order to let users log in using an OIDC Identity Provider. To do this, you must refer to the documentation provided by your IdP as it differs for each OIDC Identity Provider.

Your OIDC Identity Provider will create a unique ID for the registered API during this procedure, which is typically referred to as a Client ID and Secret.

Once created, you will use the credentials to configure a new OpenID Connect provider in Baserow:

  • Obtain the Provider’s Base URL.
  • Obtain the Provider’s Client ID.
  • Obtain the Provider’s Client Secret.
  • Set Redirect URL. This is the Baserow Callback URL you will find in the Baserow Provider Settings where you create or edit the authentication provider.

After you’ve accessed this information from the application, copy and paste the information from OpenID Connect into Baserow.

Connect OpenID Connect to your Baserow Account

Log in to Baserow. Go to the Admin > Authentication > Provider. Retrieve your Callback URL from your Baserow admin settings modal, following the steps in this guide.

enter image description here

Configure OpenID Connect by inputting the URL, Client ID and Secret information into the corresponding fields in your Baserow Admin Dashboard, following the steps in this guide.

You should be able to log in with OpenID Connect after completing these steps by visiting https://baserow.io/login. Your users will now be taken to a OpenID Connect sign-in flow when they attempt to log into Baserow. After logging in with their OpenID Connect credentials, they will be redirected to the app.

If you’re looking for something else, please feel free to make recommendations or ask us questions in our online community —we’re ready to assist you!