With Pluvo, you can easily set up Single Sign-On (SSO) for your academy. In this article, we explain how to retrieve the necessary information from AFAS.
Once you have this information, you can easily implement Single Sign-On (SSO) in Pluvo. You can find more information about this in this article.

Settings in your AFAS portal

1. Log in to www.afasonline.nl as a Portal Administrator.

2. Go to Management / External application.

3. Fill in the required fields as follows:

• URL: https://your-subdomain.pluvo.com/ or your own custom domain name
• Redirect Url: https://your-subdomain.pluvo.com/oidc/callback/ or your own custom domain name + /oidc/callback/

4. After saving the information, copy the Client ID and Client Secret. You will need this information for the configuration in Pluvo.

More help can be found on the following AFAS Helpdesk page: https://help.afas.nl/help/NL/SE/plv2_Config_SSO_2.htm

Pluvo SSO Settings

Go to Pluvo and navigate to Management > Settings > SSO & LTI. Fill in the following fields:

• OAuth Client id: ..... [You obtained this above]
• OAuth Client secret: ....... [You obtained this above]

The following fields should be filled in with the standard AFAS SSO parameters:

• Authorization endpoint: https://sts.afasonline.com/connect/authorize/
• Token endpoint: https://sts.afasonline.com/connect/token/
• User endpoint: -- Leave this blank --
• Scope: openid email
• Oidc sign algo: RS256
• Oidc op jwks endpoint: https://sts.afasonline.com/.well-known/openid-configuration/jwks/

Fill in the fields, click "Save," and set the slider to "active."

Updated on: 12/08/2024