Skip to content

Overview

ImmPort delegates the operations of sign-in, token management and sign-out to a separate managed service called ImmPort Auth Service. It uses OAuth 2.0 and Open ID Connect 1.0 protocols to authenticate users and issue access tokens containing the user data and proper access policies.

Currently, ImmPort Auth service is employed by the following services and the users can benefit from the Single Sign-On functionality across these services.

  • ImmPort Web Applications
    • ImmPort Data Browser
    • ImmPort Data Manager
    • ImmPort User Administration
    • ImmPort Study Registration
  • JupyterLab Server
  • ImmPort SwaggerUI

Authentication Endpoints

The following table illustrates the OAuth 2.0 and Open ID Connect 1.0 endpoints available for use within ImmPort Auth service

Description Endpoint
openid configuration https://www.immport.org/auth/.well-known/openid-configuration
issuer https://www.immport.org/auth
token_uri https://www.immport.org/auth/oauth2/token
authorization-uri https://www.immport.org/auth/oauth2/authorize
user-info-uri https://www.immport.org/auth/userinfo
jwks https://www.immport.org/auth/oauth2/jwks
user-name-attribute sub

Supported Grant Types

  • authorization_code
  • client_credentials
  • refresh_token

Available Scopes

  • openid
  • browse
  • download