Single sign on allows you to use multiple applications and access different resources by signing in just once and gives the users the most seamless, easiest, and modern way to use your solutions. This functionality is now available in the Authorization Code Grant flow.
To use the single sign on, you need an id_token, which provides the identity of the user and/or resource owner. To get it in the Authorization Code Grant flow, you need to include the openid
scope in the list of scopes included in your request to the OAuth2 service. After the client successfully exchanges the authorization code for an access token, you get the id_token value in the response body.
Pass the id_token in subsequent requests to the OAuth2 service to get access tokens for different tenants without interrupting the user experience with additional authentication screens.
To find out more about the single sign on:
- Read the related section of the OAuth2 service documentation.
- See the OAuth2 service's API console, paying special attention to the
/authorize
endpoint.
If you find any information that is unclear or incorrect, please let us know so that we can improve the Dev Portal content.
Use our private help channel. Receive updates over email and contact our specialists directly.
If you need more information about this topic, visit hybris Experts to post your own question and interact with our community and experts.