Migrating to Telicent Authorization Server

Telicent Authorization Server is designed to work with external identity providers such as KeyCloak or Cognito. It does not provide the ability to create users as these must come from the external IdP.

Once authenticated via the IdP, a user representation is created in Authorization Server and from there, user roles, permissions, groups and other user management tasks can be handled directly within Authorization Server.

Telicent applications which make use of authentication, such as Smart-Cache GRAPH and Smart-Cache SEARCH, will need to be reconfigured to work with the new Authorization Server as follows:

  1. The existing JWKS_URL environment variable will need to be updated to point to the new JWKS endpoint within Authorization Server at https://{auth-server-url}/oauth2/jwks.
  2. In addition, a new environment variable will be needed to point to the userinfo endpoint on the Authorization Server. This is used by the application to obtain information about the roles, permissions and groups available to the user. The environment variable is called USERINFO_URL and should point to the userinfo URL, for example https://{auth-server-url}/userinfo.
[EARLY DRAFT RELEASE] Copyright 2020-2025 Telicent Limited. All rights reserved