Configure an auth provider

Auth providers are configured through the NetFoundry Frontdoor REST API. Each auth provider defines how users authenticate with external identity providers before accessing your Shares.

Create an auth provider

NF console
CLI

Coming soon

Use the REST API to create an auth provider for Frontdoor. Make sure to replace placeholders with your actual values:

OIDC

curl -X POST "https://api.netfoundry.io/frontdoor/{frontdoorId}/auth-providers" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer <your-api-token>" \
  -d '{
    "name": "oidc-auth",
    "type": "OIDC",
    "config": {
      "client_id": "<oidc-client-id>",
      "client_secret": "<oidc-client-secret>"
      "scopes": ["openid", "email", "profile"],
      "issuer": "https://your-oidc-provider.com"
    }
  }'

GITHUB

curl -X POST "https://api.netfoundry.io/frontdoor/{frontdoorId}/auth-providers" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer <your-api-token>" \
  -d '{
    "name": "github-auth",
    "type": "GITHUB",
    "config": {
      "client_id": "<github-client-id>",
      "client_secret": "<github-client-secret>"
    }
  }'

GOOGLE

curl -X POST "https://api.netfoundry.io/frontdoor/{frontdoorId}/auth-providers" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer <your-api-token>" \
  -d '{
    "name": "google-auth",
    "type": "GOOGLE",
    "config": {
      "client_id": "<google-client-id>",
      "client_secret": "<google-client-secret>"
    }
  }'

See the auth provider API guide for more details.

Supported provider types

NetFoundry Frontdoor supports three types of OAuth providers:

OIDC: Standard OpenID Connect provider for custom identity providers
GITHUB: GitHub OAuth authentication
GOOGLE: Google OAuth authentication

Configuration parameters by provider type

Each provider type requires specific configuration parameters:

OIDC (OpenID Connect)

client_id: OIDC client ID from your identity provider
client_secret: OIDC client secret from your identity provider
issuer_url: The issuer URL for your OIDC provider
scopes: Array of OAuth scopes to request (e.g., ["openid", "email", "profile"])

Google OAuth

client_id: Google OAuth client ID from Google Cloud Console
client_secret: Google OAuth client secret from Google Cloud Console

GitHub OAuth

client_id**: GitHub OAuth app client ID
client_secret: GitHub OAuth app client secret

Create an auth provider​

OIDC​

GITHUB​

GOOGLE​

Supported provider types​

Configuration parameters by provider type​

OIDC (OpenID Connect)​

Google OAuth​

GitHub OAuth​