Identity provider

In this guide we’re going to learn how to add an identity provider to a StarTree Cloud account. You will need to have created an organization and user.

StarTree Cloud supports GitHub, GCP, and OIDC (Ex: OKTA) as identity providers. The identity provider is used to secure access to an environment.

From the organizations screen, click the Identity Providers tab and then Create identity provider in the top right. You will see the following screen:

Identity Provider
Select Identity Provider

Select your preferred identity provider and then generate the credentials by following the instructions below.

GitHub

After selecting the Github identity provider, you’ll see the following screen:

Identity Provider
Select GitHub as Identity Provider

On a new browser tab, navigate to the Register a new OAuth application(opens in a new tab) page. You should see the following:

Github Register Oauth Application
Register OAuth application

Choose an application name. Now, type https://www.startree.cloud into the Homepage URL field and http://identity.<env\>.<org\>.startree.cloud/ into the Authorization callback URL field.

Click Register application.

You will now be redirected to a page that describes your OAuth application.

Copy Client ID and paste it into the Client Id field on the StarTree Cloud UI. Now click on the Generate a new client secret button, copy the generated secret, and paste it into the Client Secret field on the StarTree Cloud UI. Finally, enter your Organization name and click on Create.

Your identity provider has now been created.

Google

After selecting the Google identity provider, you’ll see the following screen:

Identity Provider Gcp
Select Google as Identity Provider

On a new browser tab, navigate to the Credentials page(opens in a new tab).

  1. Click Create credentials > OAuth client ID.
  2. Select the Web application application type.
  3. Name your OAuth 2.0 client and click Create

Copy Client ID and paste it into the Client Id field on the StarTree Cloud UI. Copy Client Secret and paste it into the Client Secret field on the StarTree Cloud UI.

Your identity provider has now been created.

OIDC

After selecting the OIDC identity provider, you’ll see the following screen:

175642144 57540cc1 5fd1 4dcc Ad3f 262d83bd73e9
175648842 Eb80786e 6190 4264 9b08 86f47852a6de
  1. Specify identify provider name
  2. Specify OIDC client ID
  3. Specify OIDC client secret
  4. Specify Issuer URL

If you are trying to configure OKTA, then on a new browser tab, navigate to this page to get the details for Client ID and Sercret: Credentials page(opens in a new tab). For getting the details for issuer page, visit this page Redirect page(opens in a new tab)

Your identity provider has now been created.