Amazon

Registering PingFederate as a security profile in Amazon

To allow PingFederate to process social sign-on requests with Amazon, add PingFederate as an OAuth application in the Amazon Developer Console.

Steps

  1. Sign on to the Amazon Developer Console.

  2. On the navigation menu, click Login with Amazon.

    Screen capture showing the location of Login with Amazon on the navigation menu.

  3. Click Create a New Security Profile.

  4. On the Name your new Security Profile page:

    1. In the Security Profile Name field, enter a name, such as PingFederate.

    2. In the Security Profile Description field, enter a description, such as For PingFederate Social Login with Amazon.

    3. In the Consent Privacy Notice URL field, enter a URL that contains a privacy notice, such as http://www.example.com/privacy.html. Click Save.

  5. On the Login with Amazon page, go to the security profile that you just created. Hover over the Settings icon, then click Web Settings.

  6. On the Security Profile Management page, click Edit:

    1. In the Allowed Origins field, enter the hostname or virtual hostname and port of your PingFederate server.

    2. In the Allowed Return URLs field, enter the hostname or virtual hostname and port of your PingFederate server followed by the Amazon IdP Adapter instance endpoint.

      The default endpoint is /amazon-authn. If you set a custom endpoint here, enter the matching value in the Authorization Callback Endpoint field of your adapter instance configuration when you complete the steps in Configuring an adapter instance.

    3. Click Save.

  7. Click Show Secret and note the Client ID and Client Secret to use in Configuring an adapter instance.