waker kab

Single Sign On - Identity Provider Keycloak - Configuration issue

Discussion created by waker kab on Jun 27, 2019
Latest reply on Jul 1, 2019 by Stefanie Sanders



We are trying to integrate a third party identity provider (Keycloak) with Canvas LMS using OpenID Connect protocol to build Single Sign On. We have looked at https://community.canvaslms.com/docs/DOC-9870-4214406803 to guide us configure it. However, the information is not adequate to configure OpenID Connect related information (please see attached screenshot). Could someone please provide us with step by step instructions on what info/value that we need to provide in the attached fields (listed below as well)

- Client ID

- Client Secret

- Authorize URL

- Token URL

- End Session Endpoint

- UserInfor Endpoint

- scope 

- Login Attribute

- Just in Time provisioning

- Federated attributes


As we are not configuring them correctly (we assume), at the end of request/response, Canvas LMS shows a page where it says that "There was a problem logging in Canvas"


We would be grateful for help.


Kindest Regards