Identity provider

In this guide we're going to learn how to add an identity provider to a StarTree Cloud account. You will need to have created an organization and user.

StarTree Cloud supports GitHub, GCP, and OIDC (Ex: OKTA) as identity providers. The identity provider is used to secure access to an environment.

From the organizations screen, click the Identity Providers tab and then Create identity provider in the top right. You will see the following screen:

Select Identity ProviderSelect Identity Provider

Select your preferred identity provider and then generate the credentials by following the instructions below.

GitHub

After selecting the Github identity provider, you'll see the following screen:

Select GitHub as Identity ProviderSelect GitHub as Identity Provider

On a new browser tab, navigate to the Register a new OAuth application (opens in a new tab) page. You should see the following:

Register OAuth application Register OAuth application

Choose an application name. Now, type https://www.startree.cloud into the Homepage URL field and http://identity.<env\>.<org\>.startree.cloud/ into the Authorization callback URL field.

Click Register application.

You will now be redirected to a page that describes your OAuth application.

Copy Client ID and paste it into the Client Id field on the StarTree Cloud UI. Now click on the Generate a new client secret button, copy the generated secret, and paste it into the Client Secret field on the StarTree Cloud UI. Finally, enter your Organization name and click on Create.

Your identity provider has now been created.

Google

After selecting the Google identity provider, you'll see the following screen:

Select Google as Identity ProviderSelect Google as Identity Provider

On a new browser tab, navigate to the Credentials page (opens in a new tab).

  1. Click Create credentials > OAuth client ID.
  2. Select the Web application application type.
  3. Name your OAuth 2.0 client and click Create

Copy Client ID and paste it into the Client Id field on the StarTree Cloud UI. Copy Client Secret and paste it into the Client Secret field on the StarTree Cloud UI.

Your identity provider has now been created.

OIDC

After selecting the OIDC identity provider, you'll see the following screen:

Select OIDC as Identity ProviderYou will see login as OKTA once configured when you try to use any apps for the organization

  1. Specify identify provider name
  2. Specify OIDC client ID
  3. Specify OIDC client secret
  4. Specify Issuer URL

If you are trying to configure OKTA, then on a new browser tab, navigate to this page to get the details for Client ID and Sercret: Credentials page (opens in a new tab). For getting the details for issuer page, visit this page Redirect page (opens in a new tab)

Your identity provider has now been created.