OAuth 2.0 is an open standard protocol that provides unified authorization for third-party applications. The system acts as an authorization server, allowing its users to log in as third-party application users.
After a third-party application is added to the system's OAuth 2.0 protocol, the system automatically generates a client ID (APPID), a client secret (SECRET), and a Discovery Url for the application. The Discovery Url must be in the format of http://{IP}/api/sso/.well-known/openid-configuration. The third-party application must save the parameters. When logging in to the third-party application, a user can select to log in through the system. Then, the system login page automatically opens. After the system verifies the APPID and SECRET (only at first login), the user can enter the username and password of the system to return to the third-party application.
It is difficult for users to manage login accounts if each app requires an independent login account and password. To simplify account management, you can configure unified authorization for third-party applications, allowing users to log in as third-party application users.