Configure an auth provider

Auth providers are configured through the NetFoundry Frontdoor REST API. Each auth provider defines how users authenticate with external identity providers before accessing your Shares.

Supported provider types

NetFoundry Frontdoor supports three types of OAuth providers:

OIDC - Standard OpenID Connect provider for custom identity providers
GITHUB - GitHub OAuth authentication
GOOGLE - Google OAuth authentication

Create an auth provider

Use the REST API to create an auth provider within your Frontdoor:

curl -X POST "https://api.netfoundry.io/frontdoor/{frontdoorId}/auth-providers" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer <your-api-token>" \
  -d '{
    "name": "google-auth",
    "type": "GOOGLE",
    "config": {
      "client_id": "<google-client-id>",
      "client_secret": "<google-client-secret>"
    }
  }'

See the auth provider API Guide for more details.

Configuration parameters by provider type

Each provider type requires specific configuration parameters:

OIDC (OpenID Connect)

client_id: OIDC client ID from your identity provider
client_secret: OIDC client secret from your identity provider
issuer_url: The issuer URL for your OIDC provider
scopes: Array of OAuth scopes to request (e.g., ["openid", "email", "profile"])

Google OAuth

clientId: Google OAuth client ID from Google Cloud Console
clientSecret: Google OAuth client secret from Google Cloud Console

GitHub OAuth

clientId: GitHub OAuth app client ID
clientSecret: GitHub OAuth app client secret

Supported provider types​

Create an auth provider​

Configuration parameters by provider type​

OIDC (OpenID Connect)​

Google OAuth​

GitHub OAuth​