Skip to main content

HelloID

Tonos Care OpenID application setup
Introduction

This article demonstrates how to set up Tonos Care for single sign-on. The configuration takes place in HelloID and requires you to send information to Tonos Care.

Requirements
  • HelloID environment

  • Tonos Care environment

Application setup
Add the Tonos Care application
  1. Add a new application.

  2. Find the template for Tonos Care (OpenID Connect).

  3. Select its Add button.

AddApplication_TonosCare.png
General tab
GenTab_1_TonosCare.png
  • No changes on the General tab are required yet. After supplying the HelloID information to Tonos Care you will receive the correct default URL.

Select the Next button.

Single Sign-On tab
  • Secret

    Accept the default value, or enter a custom secret. If you use a custom value, we suggest a string of at least 52 characters.

  • Redirect URI

    By default both available Tonos Care environments are pre-filled. If you want to use the connection for only one environment, remove the other value.

SingleSignOn_TonosCare.png

Select the Next button.

Self Service tab

Optionally, generate a Self Service product, which makes the application requestable. Select a group which will have access to the product.

SelfService_TonosCare.png

Select the Next button.

Finish tab

On the Finish tab, click Save to add the application to HelloID.

Additional configuration

By default, the user's HelloID {{user.contactEmail}} attribute is sent as the unique identifier. If you wish to use another attribute, see Mapping - Overview.

Please make sure the contents of the subject attribute is always the userGUID. If you change this mapping the single sign-on connection wont work.

Mapping_TonosCare.png
Supplier-side configuration

The HelloID side of the configuration is now finished. To connect, Tonos Care needs to add the connection on their side. Contact them to request this. Send them the following information:

  • Discovery document URL

  • Client ID & Client Secret

Discovery document
  1. Edit the newly-added Tonos Care application.

  2. Right-click the View discovery document button

  3. Select Copy link. The link will look like this: https://enyoi.helloid.com/oauth2/v2/e6e741f5-a469-4849-93f7-fe2e259a339f/.well-known/openid-configuration/.

    CopyLink_TonosCare.png
Client ID & Secret
  1. Edit the newly-added Tonos Care application.

  2. Go to the Configuration tab.

  3. Copy the Client ID.

  4. Select the "eye" button to reveal the Secret, and copy the value.

ClientIDSecret_TonosCare.png

After Tonos Care configured their side of the Single-Sign-On you will receive the application URL. Add this URL to the application configuration:

General_TonosCare.png
  1. Open the Tonos Care application in HelloID.

  2. Enter the given URL on the General tab.

Finish up

The Tonos Care application has been added to HelloID, and a trust has been configured between Tonos Care and HelloID.

You are now free to test the application and assign it to users within your organization. See Applications - Overview and its related articles for more information.