📖 Artikel in der Hilfe anzeigen

Add-On: External User Authorizations

note

This is the translated version of Add-On: Externe Benutzerautorisierungen

This is the translated version of Add-On: Externe Benutzerautorisierungen

The “External User Authorizations” add-on allows an oAuth2 process from any external system to be authorized to use the PRINT LOUNGE.

After storing the OAuth2 process credentials and configuring the add-on, the user will be automatically redirected to the OAuth2 process when logging in via the LoginRequest endpoint and, if successful, logged in to the PRINT LOUNGE.

The SSO-SimpleSAML interface can be used to automate the login and registration of users.

Contents of this Documentation

16falsediscContents of this Documentationlistfalse

Requirements

  • The “External User Authorizations” add-on must be enabled for the client.

  • The “SSO SimpleSAML” add-on must be enabled for the client.

A technical adjustment in the external system may be required to create and integrate the SSO interface.

Overview of saved connections

The add-on provides an overview of the authorization workflows created and their usage. Any workflow can be edited and deleted, or a new workflow can be created.

Create a new authorization workflow

A new authorization workflow can be created by clicking the "new Workflow" button in the Add-ons Overview under "Add-ons » External User Authorizations".

Setting

Descriptions

Internal Workflow Name

The workflow name is only displayed in the overview.

Connection for Token Service

Select an existing connection or create a new connection to an external token service.

The connection type for the token service is always "Authorization & Token Service (OAuth 2.0)". The technical information received from the external system is stored here.

The redirect URI for the authorization service is always https://SHOP-DOMAIN/shop/module/ExternalAuthorization/Shop/LoginUser, and the redirect URI for the access token service is always https://SHOP-DOMAIN/shop/module/ExternalAuthorization/Shop/TokenCallback.

Connection for User API

Select an existing connection or create a new connection to an external user data API to retrieve data for the new shop user.

Mapping and configuration of custom fields

In order for a user to be registered in a PRINT LOUNGE shop, user data must be received from the external system.

Mapping is used to associate the appropriate fields of the master data with the passed variables. For example, if the variable "userName" is transferred for the user name, {$userName} must be entered in the mapping field.

Smarty commands can be used to further refine the received content and customize it to meet specific business needs (e.g., upper and lower case, or the combination of multiple pieces of information and/or static content).

note

Only one configuration can be enabled for use per shop.

Only one configuration can be enabled for use per shop.

The OAuth2 authorization process is always initiated by calling the endpoint https://SHOP-DOMAIN/shop/module/ExternalAuthorization/Shop/LoginRequest.