The Overall Flow of the SSO Setup
-
In the SingleStore Helios Portal, open the
ORG:your-org
menu on the left and go toSettings
. -
Under the
Authentication
tab, use theAdd Identity Provider
menu to create an OIDC or SAML connection. -
Name the connection.
-
Save it.
-
Under the
Update
menu, selectUpdate Connection
to continue editing the connection. -
Navigate in your IdP UI to where you can add a client/SP.
-
Add an authentication client (OIDC) or SP (SAML) to your IdP.
-
Exchange data back and forth between SingleStore and your IdP.
(See specific instructions for various providers). -
Configure bits that are not exchanged such as scopes, attributes, etc.
(See specific instructions for various providers). -
Click
Save
in the SingleStore Helios Portal to save your work. -
Try the new connection with test logins: in the
Actions
menu, clickPerform Test Login
.This will test the ability to log in without actually logging you in. -
If the test logins work, you get an error page that says login would have worked only if the problem (domain live and verified, connection activated, started from the Portal) were solved.
-
If the test logins do not work, debug the problem.
You may have an error message that provides a clue or if not, you can go to Debug Logins
in theActions
menu to see how far the login attempt made it and what errors the SingleStore identity platform saw. -
Add a domain.
-
Set the domain live.
-
Save.
-
Verify the domain by either creating a web page with the provided token or creating a DNS record with the provided token.
Click View Details
on the domain status to see the specific instructions. -
Put the IdP connection live by using
Activate Connection
under theActions
menu.
Last modified: November 7, 2023