MendixSSO
Overview
Add Single Sign-On functionality to your app for any user with a Mendix account. Authenticate users with either the Mendix Identity Provider (IDP) or your own IDP if you have BYOIDP enabled.
[Warning: Vulnerable Library Dependency]
MendixSSO is based on the oauth2-oidc-sdk and nimbus-jose-jwt libraries. With newer versions of the module, we update these libraries to newer versions. Unfortunately, recently a new vulnerability was found for the nimbus-jose-jwt library.
We have updated the MendixSSO module and dependent libraries. We strongly advise all our consumers to update their applications to the most recent version of the MendixSSO module. If this is not possible, manually update the libraries used by the MendixSSO module.
For our consumers on Mendix 9 and 10, we have patched MendixSSO module v4.2.0 and are making it available as module v9.0.0.
To support our consumers still on Mendix 8 we will make a patched version available of the MendixSSO module v3.1.1, we will release this as module v3.2.0.
Documentation
Please see Mendix SSO in the Mendix documentation for details.
Need SSO?
Add Single Sign-On functionality to your app for any user with a Mendix account. Authenticate users with either the Mendix Identity Provider (IDP) or your own IDP if you have BYOIDP enabled.
With this module you can add Single Sign-On functionality to your app for any user with a Mendix account. When your app uses the Mendix SSO module, it will delegate authentication of your end-users to the Mendix Identity Provider (IDP). The Mendix platform will authenticate users either with their Mendix credentials on https://login.mendix.com, or it can delegate the authentication to your own IDP if you have BYOIDP enabled. End-users will only get access to a protected user role in your app when you assign a user role to the end-user via Mendix’ Developer portal.
The MendixSSO implementation is based on the well known framework OpenID Connect.
Note: The MendixSSO module has always been completely flexible towards the Mendix developer in which user entity specialization you choose to use in your app, to suit your app’s specific needs.
For instructions how to setup BYOIDP, please you can read the BYOIDP documentation here: setup-byoidp
For an extensive overview of all the possibilities this module offers and instructions how to add this module to your application, see this Developer Portal Guide on Mendix Single Sign-On