Skip to main content


Add a generic OpenID Connect application

For more information, see OIDC applications and the OpenID Connect Core docs.


For this example, we'll create a demo OIDC application that can receive a request from the OIDC Debugger.

  1. Go to Applications > Applications.

  2. Click Open Application Catalog.

  3. Click Generic, and then click Add for Generic OpenID Connect.

  4. Enter a Display Name.

    For this example, we'll enter Generic OIDC Test App.

  5. Enter a Default Login URL.

    For this example, we'll enter

  6. Enter a Description and Icon.

  7. Click Next.

  8. On the Single Sign On tab, configure the application's options as needed. See Application settings reference.

    Copy the Client ID from HelloID into the target app.

    For this example, we'll copy it into the Client ID field of the OIDC Debugger.

  9. Enter the Authorize URI in the target app, in the format https://<yourcustomerid>



    The Authorize URI can also be found in the authorization_endpoint field in the app's discovery document, after saving the application.

  10. Copy the Redirect URI from the target app into the Redirect URI field in HelloID.

  11. Click Next.

  12. On the Self Service tab, enable the Generate Self Service Product toggle to automatically create a product (see Products) which grants access to this application. The Group is the group which will mediate access to the application (i.e., the group that the product will add the user to). If you select Generate Group, the name of the group will be HelloIDApp.<AppName>.

  13. Click Next.

  14. On the Finish tab, click Save.

    The application has been created.

  15. Grant a group access to an application to grant additional Groups access to this application.

  16. Customize a mapping set for this application.

  17. Add a product which grants access to an application

  18. Configure Application access rules

  19. Depending on the client application, you may need to provide values from the discovery document.


The application is now available to users in the relevant groups, on the user dashboard (see Applications for users).


When you click the Send Request button in the OIDC debugger, it builds and sends a request. For example:

You should get the following success screen: