4.12.3 OpenID authentication direct access URL
The OpenID authentication direct access URL function enables the direct access URL function to be used in single sign-on through OpenID authentication. You can specify it together with the query parameters for the direct access URL.
The table below shows the parameter specified in the query parameter. Specify a URL-encoded value for each parameter.
|
No. |
Query parameter |
Required/optional |
Description |
|---|---|---|---|
|
1 |
op |
Optional |
Specifies the name of an OpenID provider. The name of the OpenID provider must have the same value as the one of <key-name-of-the-OpenID-provider> defined in the Intelligent Integrated Management Base definition file (imdd.properties). When you specify this parameter, an authentication request is made to the authentication URL of the specified OpenID provider without the login window of the Intelligent Integrated Management Base. If the key name of the OpenID provider does not exist, the system assumes that no op parameter is specified for operation. |
The following table shows how the OpenID authentication direct access URL function works based on whether the op parameter is specified, the jp1.imdd.jp1LoginForm parameter of Intelligent Integrated Management Base definition file (imdd.properties), and the number of OpenID provider definitions defined for the OpenID provider definition function.
|
op parameter |
Number of OP definitions |
Specified jp1.imdd.jp1LoginForm value |
|
|---|---|---|---|
|
true |
false |
||
|
Omitted |
None |
The login window is displayed. |
The login window is displayed. (The JP1/Base authentication login form is displayed.) |
|
1 |
An authentication request is sent to the authentication URL of the OpenID provider. |
||
|
2 or more |
The login window is displayed. |
||
|
Specified |
None |
The login window is displayed. (The specification of the op parameter is ignored.) |
|
|
1 |
An authentication request is sent to the authentication URL of the OpenID provider. |
||
|
2 or more |
|||
Note that if the jp1.imdd.jp1LoginForm parameter is set to false and only one OpenID provider is defined, authentication is performed directly through the defined OpenID provider even when the op parameter is omitted.
- Important
-
The op parameter is not added to the URL obtained by Copy tree URL selected from Operation menu in the Integrated Operation Viewer window.
The following is an example of the direct access URL in the conditions below:
-
Show the Integrated Operation Viewer window while the node on the host HOSTB that belongs to the system SYSTEM01 is selected.
-
Okta authentication
-
View format: Sunburst chart
http://host-name-of-the-Intelligent-Integrated-Management-server:port-number/index?op=okta&sid=%5FROOT%5FAllSystems%2F%5FSYSTEM%5FSYSTEM01%2F%5FHOST%5FHOSTB&view=sunburst&eou=1