How To Set Up Your Own Keycloak App (OpenID Connect)
Step 1
Log in to your Keycloak account as an Administrator.
Step 2
Go to Clients in the left menu, and click Create.
Step 3
- For Client ID, enter a name for your App.
- For Client Protocol, select openid-connect.
- Click Save.

Step 4
- Set Access Type to confidential.
- Set Direct Access Grants Enabled to OFF.
- For Valid Redirect URIs, enter:
https://api.logonlabs.com/callback
- Click Save.

Step 5
- Taken note of your Client ID from Step 3. This will be used in step 7.
- Go to the Credentials tab to get your Secret. This will also be used in step 7.

Step 6
- Go to Realm Settings in the left menu.
- Under the General tab, click on OpenID Endpoint Configuration.
- Copy the authorization_endpoint. This is your Login URL for the next step.
- Also copy the token_endpoint. This is your Token URL for the next step.
Step 7
LogonLabs Setup:
- Go to logonlabs.com
- Click Sign In and authenticate (or Sign Up make a new account and authenticate).
- Navigate to Default Rules (or Domain Rules and open/create a domain module).
- Click on the Keycloak button under Enterprise Identity Providers.
- Click Add.
- Choose OpenID Connect for the protocol.
- Enter a name.
- Enter a description (optional).
- Enter your Login URL from the previous step.
- Enter your Token URL from the previous step.
- Enter your Client ID and Secret from the steps above.
- Click Add
- Enable Keycloak by clicking the new entry in the Keycloak Identity Providers list.