Single Sign-On for Tanzu 1.15

1.16 1.15 1.14

Testing OIDC Integrations

Last Updated October 29, 2024

This topic tells you how an administrator can test the OpenID Connect (OIDC) connection between a Single Sign‑On for VMware Tanzu Application Service service plan acting as an Identity Provider (IDP), and another Single Sign‑On service plan acting as a Relying Party (RP).

Testing Your Single Sign‑On Connection

  1. Log in to Apps Manager at https://apps.SYSTEM-DOMAIN.

  2. Navigate to the org and space where your app is located.

  3. Locate the service instance of the Single Sign‑On plan bound to your app.

    Screenshot of Service tab in Apps Manager. Under the Services section, the button for the Single Sign-On service is highlighted.

  4. Select the service instance.

  5. Click Manage.

    The example-service-instance service screen in Apps Manager. Below the title, the manage link is highlighted.

  6. In the Apps tab, click your app.

    The Apps tab in Apps Manager showing a tile for the example-authcode-sample app.

  7. Under Identity Providers, select the SSO Identity Plan Origin. Remove any other identity providers.

    The identity providers section with the SSO Identity Plan Origin button and an Internal User Store button.

  8. Return to Apps Manager.

  9. Click the URL listed below your app to access the app.

    Screenshot of example-authcode-sample app page Apps Manager. Under the Route tab, there is one route listed.

  10. Log in to the app. You will be redirected to the IDP to authenticate.

  11. Sign in to the IDP.

  12. If necessary, authorize the necessary scopes to connect the IDP with your app. If you need to do this, the IDP will prompt you.

  13. After authorizing the scopes, you should be logged into the app.