Instruction
Configuratie - Systeem - Oauth providers

This page describes how to register i-Reserve on LinkedIn Developers, so users can sign in to i-Reserve with their LinkedIn account (single sign-on, SSO). For the i-Reserve-side setup (adding and activating the provider) see "How do I activate an OAuth provider in i-Reserve?".

Online documentation

Step 1: Create an app

Go to LinkedIn Developers and create an app. LinkedIn requires a linked LinkedIn company page as the app owner.

Step 2: Add the right product

Go to the Products tab and request "Sign In with LinkedIn using OpenID Connect". Without this product the scopes openid, profile and email are unavailable and sign-in fails.

Step 3: Set the redirect URL

Go to the Auth tab and under OAuth 2.0 settings → Authorized redirect URLs enter:

  • Admin login: https://<yourdomain>/adminlogin
  • Customer login: https://<yourdomain>/login

The URL must match exactly what i-Reserve sends, see "What is the redirect URL?".

Step 4: Copy the values into i-Reserve

The Client ID and Client Secret are on the Auth tab under Application credentials. In i-Reserve go to Configuration → System → Oauth providers, add the LinkedIn provider and enter:

Field in i-ReserveValue from LinkedIn
Key IdThe Client ID
Key SecretThe Client Secret

LinkedIn does not use a tenant field. Then switch on active (customer login) and/or active (admin) (admin login) and save.

Common problems

MessageCause and solution
unauthorized_scope_errorThe Sign In with LinkedIn using OpenID Connect product has not been added to the app (step 2).
Invalid redirect/callback URLThe redirect URL is missing, or not exact, on the app. Register exactly https://<yourdomain>/adminlogin and/or https://<yourdomain>/login.
invalid_clientClient ID or Client Secret copied incorrectly. Check the values on the Auth tab.