Skip to main content
This guide shows how to configure a generic/custom OpenID Connect (OIDC) identity provider (IdP) for your Honeydew account.
Use this guide if your OIDC provider is not covered by a specific integration guide. For Okta, Entra ID, or other providers with dedicated guides, refer to those instead.
1

Set up your identity provider (IdP)

Create an OIDC application in your identity provider.
  1. Log in to your identity provider’s admin console.
  2. Create a new OIDC/OAuth 2.0 application or client. Choose Web Application as the application type.
  3. Ensure your application supports the following OIDC scopes:
    • openid - Required for OIDC authentication
    • profile - Required to retrieve user profile information
    • email - Required to retrieve user email address
  4. Choose a name for the application (e.g. Honeydew).
  5. Configure the Redirect URI (also called Callback URL):
    • Add: https://auth.honeydew.cloud/login/callback
    If you are using an EU-based Honeydew instance, use: https://auth.eu.honeydew.cloud/login/callback
  6. Configure the Sign-out redirect URI (if supported):
    • Add: https://app.honeydew.cloud
    If you are using an EU-based Honeydew instance, use: https://app.eu.honeydew.cloud
  7. Save the application configuration.
  8. Note the following information from your OIDC application:
    • Client ID
    • Client Secret
    • Issuer URL or Discovery URL (typically ends with /.well-known/openid-configuration or just the base issuer URL)
    This information will be needed to configure Honeydew.
  9. Assign users or groups that should have access to Honeydew.
2

Configure OIDC Integration in Honeydew

Now that your OIDC application is ready, configure it in Honeydew.Please pass the following information to your Honeydew contact or to [email protected]:
  • Issuer URL or Discovery URL from your OIDC provider
  • Client ID from your OIDC application
  • Client Secret from your OIDC application
  • Email domains used in your company’s email addresses
You will receive back from Honeydew:
  • Initiate login URI (format: https://app.honeydew.cloud/login?connection=<connection name>)
3

Finish OIDC configuration in your identity provider

  1. Return to your OIDC application in your identity provider.
  2. Configure the Initiate login URI (if supported) with the URI provided by Honeydew. This allows users to initiate login from your identity provider.
  3. Save your configuration.
  4. Notify your Honeydew contact or [email protected] that the configuration is complete.
  5. Once complete, test the OIDC setup by logging in to Honeydew. Any user with an email address matching the domain you provided will be able to log in using your OIDC provider. Upon login they will be redirected to your provider’s login page.