We assume that you already have provisioned a Psono SaaS instance, if not please create one.
Go to "Psono SaaS" and click the pencil icon button
You can now modify all the settings according to your requirements. The settings look "cryptic" yet "map" to the settings of the regular settings of the regular
settings.yaml. Details about each can be found in the regular Admin documentation here e.g. /admin/overview/summary.html.
Some of the parameters like
LDAPare more complex and as such need to be provided in json encoding. So you might be asked to configure something like this in your
OIDC_CONFIGURATIONS: 1: OIDC_RP_SIGN_ALGO: 'RS256' OIDC_RP_CLIENT_ID: 'xxxxxxxx.apps.googleusercontent.com' OIDC_RP_CLIENT_SECRET: 'xxxxxxx' OIDC_OP_JWKS_ENDPOINT: 'https://www.googleapis.com/oauth2/v3/certs' OIDC_OP_AUTHORIZATION_ENDPOINT: 'https://accounts.google.com/o/oauth2/v2/auth' OIDC_OP_TOKEN_ENDPOINT: 'https://oauth2.googleapis.com/token' OIDC_OP_USER_ENDPOINT: 'https://openidconnect.googleapis.com/v1/userinfo' OIDC_USERNAME_ATTRIBUTE: 'email'
You'd first look for
OIDC_CONFIGURATIONSin the console and then use a yaml to json converter like e.g. onlineyamltools.com/convert-yaml-to-json to convert it. Afterwards you can just copy paste it as shown below:
Some of the documents require that you modify a
config.json. There are two of those
config.json, one for the regular webclient and one for the portal. You will find these settings at the end as shown in the screenshot below.