Configure JavaScript apps for OIDC login

This section describes how to configure your Ping SDK for JavaScript application with centralized login:

To initiate authentication by redirecting to the centralized login UI, add a login property that specifies how authentication happens in your app:

const tokens = TokenManager.getTokens({
  forceRenew: false, // Immediately return stored tokens, if they exist
  login: 'redirect' // Redirect to {am_name} or the web app that handles authentication
});

Supported values are as follows:

Setting Description

Setting	Description
`redirect`	Your app uses a redirect to PingAM, or another web application, to handle authentication.
`embedded`	Your app handles authentication natively, using SDK functionality.

redirect

Your app uses a redirect to PingAM, or another web application, to handle authentication.

embedded

Your app handles authentication natively, using SDK functionality.

If you do not specify a value, embedded is assumed, for backwards-compatibility.

When the user is returned to your app, complete the OAuth 2.0 flow by passing in the code and state values that were returned.

Use the query property to complete the flow:

const tokens = TokenManager.getTokens({
  query: {
    code: 'lFJQYdoQG1u7nUm8 ... ', // Authorization code from redirect URL
    state: 'MTY2NDkxNTQ2Nde3D ... ', // State from redirect URL
  },
});

Ping SDKs

Configure JavaScript apps for OIDC login