PingID User Management
Feature
Integrating Germain with Ping for Authentication
Configuration in PingID
The configuration in PingID depends on your organization's setup. We can guide you through the process of configuring PingID for OAuth and OpenID authentication methods.
Configuration in Germain
Sign in to your Germain application as an administrator.
Go to System > System Settings > Root Config (Advanced).
Navigate to services > authentication. In AuthenticationConfig, set the following:
defaultRedirectPath: workspace URL (e.g.,
/germainapm/workspace/app
)oauthAuthentication: true
OAuthAuthentication Parameters - Germain UX
Go to System > Auth Settings > Authentication.
Click the Plus button to add a new Authentication Provider.
Authentication Provider Parameters - Germain UX
Select OAuth Provider and click next.
Select OAuth provider - Germain UX
Configure the provider settings:
Provider Name: Name for your Auth Provider
Client ID: <Client ID Copied from PingID>
Client Secret: <Client Secret Copied from PingID>
Authorization Grant Type: authorization_code
Redirect URI Template:
{baseUrl}/login/oauth2/code/{registrationId}
Authorization URI:
https://<yourPingIDDomain>/fss/as/authorization.oauth2
Token URI:
https://<yourPingIDDomain>/fss/as/authorization.oauth2
User Info URI:
https://<yourPingIDDomain>/fss/idp/userinfo.openid
JWK Set URI:
https://<yourPingIDDomain>/fss/pf/JWKS
User Name Attribute: email
JWS Algorithm: (leave blank)
Role List Path: (leave blank)
Scope values: openid, profile, email, roles
PingID Parameters - Germain UX
PingID Parameters - Germain UX
PingID Parameters - Germain UX
Click Finish.
Restart the Tomcat services to apply the changes.
Once completed, the login page should display the "Login with PingID" OAuth provider option.

PingID Login Page - GermainUX
Service: Authentication
Feature Availability: 2023.1 or later