Skip to main content
If you already have an Identity Provider (IdP) and it supports OpenID Connect (OIDC) then you can integrate it with Fiskil to provide the same, robust authentication standards as you do in other applications.
It is optional to configure an external Identity Provider. Fiskil can use a built-in authentication experience facilitated by your resource server.
Integrating an IdP with Fiskil means the authentication step is managed by your IdP. You don’t need to build Customer Search or Customer Details endpoints on your resource server. This saves you time and ensures a consistent authentication experience for your users.
If you operate within a regulated open data ecosystem such as CDR, be sure to confirm your IdP can comply with the authentication standards of the ecosystem.

Connecting Your IdP to Fiskil

Setting up your IdP with Fiskil involves adding Fiskil as an OIDC client for your IdP.
  1. Add Fiskil as a client with your IdP
  2. Share the client credentials with Fiskil
  3. Provide the Authorization and Token endpoints for your IdP to Fiskil
  4. Enable external IdP for your instance (contact us for this step)

Limitations

  • Fiskil only works with OpenID Connect for federated identity. Your IdP must support it.
  • The ID Token returned by your IdP must contain a sub claim that is unique and stable for the authenticated user. It must not change between consents.
  • The sub claim in the ID token must work as an ID to look up user data for the authenticated user. It will be used as the {customerId} path parameter in requests to your resource server.
If you have any questions about whether we can support your IdP please reach out to us and we can discuss this with you.