OAuth 2.0 Support in Bold Reports®

The Bold Reports® application can be configured to support OAuth 2.0 for Single Sign-On (SSO), enabling users to log in directly to the Bold Reports® application after authenticating using OAuth 2.0.

Prerequisites

  1. An account with an OAuth 2.0 provider.

  2. Register the Bold Reports® application with the OAuth 2.0 provider.

Steps to configure OAuth 2.0 in BoldReports

  1. To configure the OAuth 2.0 connection details, click the Settings option in the left-side panel of the Report Server.

  2. Navigate to the Authentication tab and OAuth 2.0 as shown in the following image Authentication Active Directory Settings

  3. Provide the following details in the OAuth 2.0 settings of BoldReports application.

Provider Name It represents the name of the authentication provider to be displayed on the login page.
Provider Logo It represents the logo of the authentication provider to be displayed on the login page.
Authorization Endpoint This is the endpoint in the provider used to authorize the user.
Token Endpoint Method It represents the request type to access the token endpoint.
Token Endpoint It is the endpoint in the provider responsible for generating the token.
User Information Endpoint Method It is the endpoint in the provider used to retrieve the user details.
User Information Endpoint It represents the request type used to access the user information endpoint.
Client ID It is a unique identifier provided to each application during registration with the providers.
Client Secret It is a secret key used to authorize the applications.
Scopes It is a comma-separated list of identifiers that specifies the access privileges being requested from the provider.
Logout URI It is an endpoint that logs out the third-party provider.
Email This should be the email address of an admin account of the provider.

Group Claims Authentication

This section allows automatic user and group mapping based on the group claim received in the authentication token. The claims are typically represented as a JSON object containing key-value pairs for each claim. Provide the appropriate JSON key to identify the group claim value.

Enable User and Group Mapping When enabled, the system fetches group claim values from the token and dynamically maps users to one or more groups during login.
Un-map Existing Groups of User and map to New Group When enabled, all previously assigned groups for the user are removed, and the user is mapped only to the groups specified in the claim.
Group Claim Name Enter the claim name that contains the group identifiers. Users will be mapped only if the group names in the claim match existing groups in the site.

Group-Claims-Settings

Note: Please refer to the OAuth 2.0 authentication documentation for more information.