OKTA SSO (Single Sign On)

Tenant name: (company.okta.com)

Client ID: Public Identifier for OAth

Your IT team needs to contact their Okta account rep and request to have their tenant enabled for OpenID Connect. You can tell whether this is done when the following URL (https://company.okta.com/.well-known/openid-configuration) starts returning an OpenID.

  1. Connect config document (similar to https://tripactions.oktapreview.com/.well-known/openid-configuration). Once this is done, follow the steps below.

  2. Go to https://company.okta.com/home/admin-entry (the admin portal for Okta).

    okta1.png

  3. Click on the green button "Create New App".

  4. Select Web platform and "OpenID Connect" sign on method, and click "Create".
    okta2.png
  5. Name the app "TripActions".

    okta3.png

  6. Upload the icon (ta.png) provided.

    ta.png

  7. Enter https://app.tripactions.com/app/user/openid-connect/return as the redirect URI and click "Finish".

    okta4.png

  8. Make sure tatrip://openidconnect is whitelisted as a redirect URI:

    okta5.png

  9. On the app settings screen, configure the app as follows:

    1. Check all grant types.

    2. Login Initiated by Either Okta or App.

    3. App visibility: both checked.

    4. Initiate login URI: https://app.tripactions.com/openid-connect/init

      okta6.png

  10. Click "Save".

  11. Once the app has been configured, we will need the Client ID from the Client Credentials section shown above.

 

Have more questions? Submit a request