oidc-agent
Search…
Introduction
Quickstart
Installation
Configuration
Usage
oidc-agent
oidc-agent-service
oidc-keychain
oidc-gen
General Usage
Detailed Information About All Options
Integrate With Different Providers
B2Access
EGI
Elixir
Google
HBP
Helmholtz AAI
IAM (INDIGO/DEEP)
KIT
Any Other Provider
Known Issues
Client Configuration Values
oidc-add
oidc-token
Other Applications Using oidc-agent
Tips
oidc-agent-server
MAC OS
Security
API
Powered By GitBook
EGI
EGI Check-in supports dynamic registration, but dynamically registered clients will not have any scopes. Therefore, users have to either register a client manually or use a preregistered public client (recommended).
Example:
1
$ oidc-gen --pub --issuer https://aai.egi.eu/oidc --scope "eduperson_entitlement email" <shortname>
2
[...]
3
Generating account configuration ...
4
accepted
5
To continue and approve the registered client visit the following URL in a Browser of your choice:
6
https://[...]
7
[...]
8
Polling oidc-agent to get the generated account configuration .....success
9
The generated account config was successfully added to oidc-agent. You don't have to run oidc-add.
10
11
Enter encryption password for account configuration '<shortname>':
12
Confirm encryption Password:
Copied!
Note that you need to run the webbrowser on the same host as the oidc-gen command.
Advanced users may succeed by otherwise ensuring that the browser you are using can connect to the host on which oidc-gen and oidc-agent run on ports 4242, 8080 or 43985.
Previous
B2Access
Next
Elixir
Last modified 2mo ago
Copy link