Document Tree
    Document Properties
    Kbid
    3L0822
    Last Modified
    28-Mar-2025
    Added to KB
    18-Apr-2023
    Public Access
    Everyone
    Status
    Online
    Doc Type
    Guidelines
    Product
    Intershop Progressive Web App
    Guide - Intershop Progressive Web App - Authentication with Single Sign-On (SSO)

    Intershop Commerce Management supports logging in clients via SSO (see Concept - Single Sign-On (SSO)).

    The PWA uses the library angular-oauth2-oidc to support an easy configuration for providing access to identity providers.
    After setting up the ICM side with the identity provider, an implementation for the interface IdentityProvider, provided in the IdentityProviderModule, has to be added.

    For development purposes the configuration can be added to the Angular CLI environment files:

      identityProvider: 'Auth0',
      identityProviders: {
        'Auth0': {
          type: 'auth0',
          domain: 'some-domain.auth0.com',
          clientID: 'ASDF12345',
        }
      },

    For production, this configuration should be provided to the SSR process via environment variables (see Building and Running Server-Side Rendering).
    The usage of identity providers can also be set in the multi-channel configuration (see Building and Running nginx Docker Image).

    pwa:
      environment:
        IDENTITY_PROVIDER: 'Auth0'
        IDENTITY_PROVIDERS: |
          Auth0:
            type: auth0
            domain: some-domain.auth0.com
            clientID: ASDF12345

    SSO with Auth0 for PWA

    Follow this guide to set up an application in the Auth0 configuration.

    The PWA contains a default SSO with Auth0 identity provider implementation located in the Auth0IdentityProvider.

    Use the configuration fields domain and clientID for configuring the provider.

    Business Cases

    Create New User

    Authentication Provider Route in ICM e-mail Behavior of PWA
    ICM /invite Redirect to /forgotPassword/updatePassword
    SSO /invite Redirect to SSO provider

    User Forgot Password

    Authentication Provider Route in ICM e-mail Behavior of PWA
    ICM /forgotPassword/updatePassword Show change password form
    SSO /forgotPassword/updatePassword Redirect to SSO provider

    Further References

    Disclaimer
    The information provided in the Knowledge Base may not be applicable to all systems and situations. Intershop Communications will not be liable to any party for any direct or indirect damages resulting from the use of the Customer Support section of the Intershop Corporate Web site, including, without limitation, any lost profits, business interruption, loss of programs or other data on your information handling system.
    The Intershop Knowledge Portal uses only technically necessary cookies. We do not track visitors or have visitors tracked by 3rd parties. Please find further information on privacy in the Intershop Privacy Policy and Legal Notice.
    Home
    Knowledge Base
    Product Releases
    Log on to continue
    This Knowledge Base document is reserved for registered customers.
    Log on with your Intershop Entra ID to continue.
    Write an email to supportadmin@intershop.de if you experience login issues,
    or if you want to register as customer.