🔓Set Up SSO (Single Sign On) with Salesforce through OpenID Connect (OAuth 2.0)

You can use Salesforce as identity provider and allow amberSearch users to log in with their Salesforce accounts. The OpenID Connect (extension of OAuth 2.0) protocol is used the SSO procedure. 

Enabling Salesforce to serve as an identity provider is done through a Connected Application in Salesforce. Follow the step 1 in this manual https://support.ambersearch.de/hc/en-150/articles/15186328048413--Set-Up-the-Salesforce-Connected-Application 

Be aware that the same Connected Application can be used for both SSO functionality and for connecting Salesforce as a new data source in amberSearch

After configuring the Connected Application the following values should be provided to amberSearch:

• Authorization Endpoint URL, Token Endpoint URL, User Info Endpoint URL, Issuer, JWKS URI (all these values can be found in https://your-salesforce-url/.well-known/openid-configuration. If this URL is externally reachable, just provide this URL to amberSearch )
• Consumer Key and Consumer Secret (See Step 4 https://support.ambersearch.de/hc/en-150/articles/15186328048413--Set-Up-the-Salesforce-Connected-Application)