This is the documentation for Clover Club 12.0.
Documentation for the upcoming version Rampur 13.0 can be found here.
Okta SSO Setup in Pricefx Unity
This setup works only for the Pricefx DEFAULT configuration (which can be found in the Pricefx SAML Configuration section). If you have more configurations, then it is not possible to add them.
In this section:
Set up Okta
Create a new application and set the ACS URL:
https://customer.pricefx.eu/pricefx/partition/saml/consume/OKTA/On the Sign On page, set Default Relay State to 'unity'.
Set up Pricefx
In the SAML configuration in the Pricefx partition:
Copy the metadata file URL to the 'ADFS/Azure/O365/Okta federation metadata URL' field.
https://dev-645534.okta.com/app/exk1wwwynhSyDMAuX357/sso/saml/metadata
(just an example)Click the 'Load metadata from URL' button to get and apply all the necessary SAML configuration information from the URL.
Add a new RelayState:
unity=/app/?partition=PARTITION
.
The parameters PARTITION and USER are substituted in the consume service with real values.
Identity Provider (Okta) Initiated Flow
Click the Pricefx application in Okta.
Okta creates a SAML Response and sends it to the https://qa.pricefx.eu/pricefx/MyPartition/saml/consume
service. It calls the default RelayState=unity and opens the application.
Service Provider (Pricefx) Initiated Flow
You can put the sign-on URL in the browser or iframe http://qa.pricefx.eu/pricefx/MyPartition/saml/signon?RelayState=unity
. The Pricefx sign-on service redirects the SAML request to Okta and when the user is authenticated, Okta redirects the communication back to the /consume service and starts the application that is in the RelayState parameter.