IDP (OAuth Wrapper) Installation Guide
IDConnect Configuration
Configuration is done on https://esaw-ts-demo.namirial.com/
Login: Namirial account (but user has to be added to the idconnect backend by an admin first)
Identity Provider Configuration in eSignAnyWhere
IDP hosted by Namirial SpA (TEST environment deployed by Alten)
Prototype version hostet by Namirial SpA, deployed by Alten is working with DEMO environment, therefore on the prototype following redirect URI is configured: https://demo.esignanywhere.net/SawViewer/HttpHandlers/AuthHandler.ashx
Example of a Simple Mapping that returns just the Document Number:
Parameter | Value | Field Mapping Configuration | Comment | |||
---|---|---|---|---|---|---|
Field Property Path | Mode | Data Field | ||||
Provider Name | Netheos Trust&Sign | |||||
Client Id | 09c11f68-2212-4a91-8070-105ba414fc71 | TEST ClientID for Christoph | ||||
Client Secret | TEST Client Sectet for Christoph: Slack message LR to CB, Tue 26/04/2022 in combination with above's Client ID | |||||
Scope | openid profile email trustsign | |||||
Authorization URI | https://esaw-ts-api-demo.namirial.com/identityserver/connect/authorize | |||||
Token URI | https://esaw-ts-api-demo.namirial.com/identityserver/connect/token | |||||
Logout URI | ||||||
JSON Web Token (JWT) Configuration | ||||||
JWKS URI | https://esaw-ts-api-demo.namirial.com/identityserver/.well-known/openid-configuration/jwks | |||||
Issuer | https://esaw-ts-api-demo.namirial.com/identityserver | |||||
Add 'nonce' parameter | Off | |||||
Validate audience | Off | |||||
Validate issuer | On | |||||
Validate lifetime | On | |||||
Field Mapping | document_number | Update | Disposable Certificate Document Number |
Usage
- Create a new envelope
- Select the document(s) to be signed
- Open the Authentication/Identification section
- Add the OAuth Identification method "Netheos Trust&Sign"
- If indicated, place in the Designer page a signature field and select the signature method "Disposable Certificate".
Screenshots
(passport picture taking)
Backoffice Approval
In case the process is one with backoffice approval step, an operator has to log in at https://demo-center.ekeynox.net/ and approve the transaction: