# Integration by OIDC If your application supports logging in using an OpenID Connect provider, you can use Authgear as the provider. ## Setting up Authgear in the Portal 1. Go to **Applications** on the left menu bar. 2. Click **⊕Add Application** in the top tool bar. 3. Input the name and select the application type **OIDC Client Application**. Click "Save". 4. You will see a link to this guide that can help you for setting up, then click "Next". 5. In the **URIs** section, fill in the **Authorized Redirect URIs** with your application's redirect uri. 6. Obtain the OpenID Connect configuration: 1. You can obtain the **Client ID** and **Client Secret** from the **Basic Info** section. 2. You can obtain the **OIDC Endpoints** from the **Endpoints** section. 7. Provide the OpenID Connect configuration to your application. 🎉 Done! You should be able to use Authgear to log in to your application. ## WordPress Example In this section, we are going to demonstrate how to use Authgear as the OIDC provider for WordPress login. 1. Follow the previous section ([Setting up Authgear in the Portal](#setting-up-authgear-in-the-portal)) to setup an **OIDC Client Application**. 2. We are going to use plugin [OpenID Connect Generic Client](https://wordpress.org/plugins/daggerhart-openid-connect-generic/). Or you can use any other OIDC compatible plugin. Download and activate it in your WordPress site. 3. Go to **Setting** > **OpenID Connect Client**. 4. Fill in the form 1. **Client ID**: Obtain the **Client ID** from the **Basic Info** section. 2. **Client Secret Key**: Obtain the **Client Secret** from the **Basic Info** section. 3. **OpenID Scope**: Space separated list of scopes the plugin could access. * Example: `openid offline_access https://authgear.com/scopes/full-userinfo`. * `https://authgear.com/scopes/full-userinfo` is needed to obtain user's profile (e.g. email). Otherwise the plugin will be able to get the user id only. 4. **Login Endpoint URL**: Obtain **Authorization Endpoint** from the **Endpoints** section. * Example: `https://{AUTHGEAR_APP_DOMAIN}/oauth2/authorize`. 5. **Userinfo Endpoint URL**: Obtain **Userinfo Endpoint** from the **Endpoints** section. * Example: `https://{AUTHGEAR_APP_DOMAIN}/oauth2/userinfo`. 6. **Token Validation Endpoint URL**: Obtain **Token Endpoint** from the **Endpoints** section. * Example: `https://{AUTHGEAR_APP_DOMAIN}/oauth2/token`. 7. **End Session Endpoint URL**: Keep it empty. 8. **Identity Key**: Where in the user claim to find the user's identification data. * Suggest to use `sub` which is the user id in Authgear. 9. Setup the user claim keys based on your project login method setting. * If your project is using **email** to login * **Nickname Key**: Set it to `email`. * **Email Formatting**: Set it to `{email}`. * If your project is using **phone** to login * **Nickname Key**: Set it to `phone_number`. * **Email Formatting**: Clear it. * If your project is using **username** to login * **Nickname Key**: Set it to `preferred_username`. * **Email Formatting**: Clear it. 5. At the bottom of the plugin settings page, you will be able to obtain the **Redirect URI**. Go to Authgear portal, add the uri to the **Authorized Redirect URIs**. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.authgear.com/get-started/oidc-provider.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.