Configure LinkedIn login using OpenID Connect

Discourse · April 25, 2024, 3:59am

This guide explains how to set up LinkedIn OpenID Connect authentication on your Discourse site, allowing users to log in using their LinkedIn accounts.

Required user level: Administrator

Summary

LinkedIn OpenID Connect authentication allows users to sign in to your Discourse site using their LinkedIn accounts. This guide walks you through the process of configuring LinkedIn authentication, from creating a LinkedIn developer application to enabling the feature on your Discourse site.

Creating a LinkedIn application

Go to LinkedIn Developers
Click the “Create app” button
Follow the provided setup process

You’ll need a LinkedIn Page associated with your application. This association cannot be changed later, so ensure you select the correct page during setup.

Enabling OpenID Connect

Navigate to the “Products” tab in your LinkedIn application
Request access to “Sign In with LinkedIn using OpenID Connect”

Getting your credentials

Once Sign In with LinkedIn is enabled:

Click the “View endpoints” button
Select the “Auth” tab to access your credentials

Configuring Discourse settings

In your Discourse admin settings, configure these fields with the credentials from LinkedIn:
- linkedin_oidc_client_id
- linkedin_oidc_client_secret
Return to the LinkedIn developer portal and add an authorized redirect URL under the “Auth” tab:
- Format: https://discourse.example.com/auth/linkedin_oidc/callback
- Replace discourse.example.com with your site’s domain name
- Use https:// for secure sites (recommended) or http:// for non-secure sites

Enable LinkedIn authentication on your Discourse site:
- Set enable_linkedin_oidc_logins to true in your site settings

Troubleshooting

If you encounter issues with the client secret validation, ensure you’re running the latest version of Discourse, as recent updates have been made to accommodate LinkedIn’s new secret format.

FAQ

Does LinkedIn sign-in require users to enter their LinkedIn credentials in Discourse?

No, users will be redirected to LinkedIn’s secure login page to authenticate, and then returned to your Discourse site once authorized.

What should I use for the redirect URL protocol (http vs https)?

Always use the same protocol (http or https) that your Discourse site uses. If your site runs on https, use https in the redirect URL.

Additional resources

Last edited by @jessii 2024-11-21T18:43:51Z

Check document
Perform check on document:

JammyDodger · May 15, 2024, 4:15am

4 posts were split to a new topic: LinkedIn OIDC client secret not correctly validating nee format

sober · May 17, 2024, 1:11am

The key format does not match

hoangphuctran93 · May 17, 2024, 1:16am

The discourse team has made updates consistent with linkedin’s update in the source code, please update your discourse page.
Read it LinkedIn OIDC client secret not correctly validating new format - #4 by ted

moosh.be · May 18, 2024, 2:00pm

Fun, this feature is not enabled on this Discourse

patrickemin · August 1, 2024, 11:46pm

Hi, how LinkedIn sign-in works? Does this means LinkedIn email and password will be used without need to enter them in Discourse? Thanks.

I wanted to try LinkedIn signin on my site (from a private Firefox window) and I got this error message: The redirect_uri does not match the registered value

patrickemin · August 2, 2024, 12:00am

Hi, is “replacing the https with http” right? My site is in https so http would’nt work is it? Thanks.

Topic		Replies	Views
How to use Linkedin account to sign in to the Discourse? SSO	6	2527	August 30, 2022
Configure GitHub login for Discourse Integrations sso , how-to , social-auth	0	268512	March 14, 2014
Discourse Codeberg Login Plugin	0	670	February 17, 2023
Sign in to Discourse using ORCID SSO	5	1522	November 15, 2023
LinkedIn Plugin: Show in Associated Accounts Feature pr-welcome , linkedin-oauth	3	1043	November 23, 2022