In production environments it is recommendet to connect Smartfacts directly to your OIDC provider. In this case no Keycloak and no CAMP component is deployed. There will be no pre-provisioning of users. As soon as a user logs in into Smartfacts, he will be provisioned on the fly.
Configuration of the OIDC client or application in your OIDC provider
Add valid Redirect URIs
In the client of you OIDC provider, add the following URLs to the list of valid redirect URLs.
https://smartfacts.<domain>
https://smartfacts.<domain>/login
https://genoslc.<domain>/login/oauth2/code/custom
https://genoslc-jama.<domain>/login/oauth2/code/custom
(if you use OIDC to Jama Connect)https://genoslc-codebeamer.<domain>/login/oauth2/code/custom
(if you use OIDC to Codebeamer)
| Info |
|---|
This list uses the default sub domains of Smartfacts. If you changed sub domains in your deployment, please adopt the values accordingly. |
Set Grant Type
Set the grant type to authorization_code
Configure the deployment
Disable deployment of CAMP and Keycloak components
...