How to set up Ping (OpenID) for Affinity access

Avatar
Brian Lee
  • Updated

Set up a custom application within Ping for authentication into Affinity. Follow these steps to get started:

  1. Click Applications on the left side, then click the + Add Application button on the right.
    1. ping add_application.png

  2. Then, select Web App and click Configure next to the OIDC option.
    2. click configure for oidc.png

  3. On the next screen, add the Application Name. The rest of the fields are optional.
    3. add application name.png

  4. On the next page, please fill out the appropriate redirect URLs. If you're not sure what your Affinity subdomain is, check out the following article: How to find your Affinity subdomain

    1. https://[subdomain].affinity.co/auth/sso/openid-callback

    2. AffinitySSOLogin://login
      4. add redirect urls.png

  5. No additional scopes are required in the section titled Grant Access to Your Application. Feel free to leave everything as is and click Save and Continue.
    click_save_and_continue.png

  6. Under ODIC ATTRIBUTES, please do the following:
    1. Click + ADD ATTRIBUTE and select "Email Address" for the PINGONE USER ATTRIBUTE field.
    2. Make sure to type in "email" for the APPLICATION ATTRIBUTE field.
    3. Make sure to click the checkbox to make it Required.
    4. Finally, click Save and Close.
      6. oidc attributes.png

  7. Now, click the Edit icon to the right.
    6. click edit icon in profile tab.png

  8. Click on the Configuration tab, then change the TOKEN ENDPOINT AUTHENTICATION METHOD to Client Secret Post. Finally, click Save and Close.
    7. click configuration tab.png

  9. Now that we're finished with the set up, please send over the following details to support@affinity.co and mention that you're setting up Ping (OpenID):

    • Client ID
    • Client Secret
    • OIDC Discovery Endpoint

Related articles

Articles in this section

See more