- Go back to 3scale admin console (https://3scale-admin.3scale.{{ book.suffix }}.
- Login as admin/admin.
- Click on the APIs tab.
- Expand the Products API.
- Click on Integration.
- Click on edit integration settings.
- Scroll down to the bottom of the page.
- Click on OpenID Connect.
- Click on the Update Service button.
- Accept the warning.
- Click on edit APIcast configuration.
- Expand the Authentication Settings section.
- Enter the following value for the OpenID Conect Issuer: http://3scale-client:<Paste your CLIENT SECRET>@sso-unsecured.{{ book.suffix }}/auth/realms/3scaleRealm
- Scroll down to the bottom of the page.
- Click on the Update the Staging Environment button.
- Click on the Back to Integration & Configuration link.
- Click on the Promote v.X to Production.
- Click on the Developers tab.
- Click on the RHBank2 account.
- Click on the 4 Applications breadcrumb link.
- Click on Create Application.
- Enter the following values:
| Parameter | Value |
|---|---|
| Application Plan | ProductsPremiumPlan |
| Name | OIDCApp |
| Description | OIDC Secured Application |
- Click on the Create Application button.
- Take note of the generated Client ID.
- Click on the Change link next to Redirect URL in the API Credentials section.
- Enter https://www.getpostman.com/oauth2/callback as the Redirect URL and click on the Update button.
- Go back to the Red Hat Single Sign-On console ( https://sso.{{ book.suffix }}/auth/admin).
- Click on Clients.
{% hint style='tip' %} There should be a new Client with the same ID as the created 3scale's Application Client ID.
3scale can synchronize client credentials between 3scale (Application credentials) and a Red Hat Single Sign-On server using OpenID Connect (OIDC). 3scale utilizes a service called Zync to synchronize calls to the Red Hat Single Sign-On server. {% endhint %}