OneLogin OpenId Connect Node Samples

This repo contains Node.js sample apps that demonstrate the various OpenId Connect flows

Auth Flow - An Express + Passport app example
Implicit Flow - A Single Page App (SPA) example
Password Grant - A sample using the Resource Owner Password Grant
Auth Flow - Using automatic discovery
Auth Flow - Using PKCE for native/mobile apps

What can I use these for

OpenId Connect is a great way to add user authentication to your application where you are depending on another party to manage the user identities.

In this case OneLogin can manage the identity of your users making it faster to get up and running.

Single Sign On (SSO)

By implementing OpenId Connect via OneLogin you are creating a OneLogin session which can be used to single sign on from your custom app into other apps that your users may have access to via the OneLogin portal

MFA

If MFA is enabled for a user in OneLogin then they will be prompted to enter a token during the authentication. OneLogin takes care of all of this for you, making strong authentication much easier to implement in your app.

Requirements

In order to run any of the samples you will need to create an OpenId Connect app in your OneLogin Admin portal. You can read more about how to do that here.

If you don't have a OneLogin developer account you can sign up here.

Local testing

By default these samples will run on http://localhost:3000.

You will need to add your callback url to the list of approved Redirect URIs for your OneLogin OIDC app via the Admin portal. e.g. http://localhost:3000/oauth/callback

US and EU instances

Examples use as base URL for OIDC endpoints: https://openid-connect.onelogin.com/oidc. If you are using an EU instance, use instead the value https://openid-connect-eu.onelogin.com/oidc.