Setting up OIDC
Set up an OIDC login screen for visitors to your docs.
This guide takes you through setting up a protected sign-in screen for your docs. Before going through this guide, make sure you’ve first gone through the process of enabling authenticated access.
To setup your GitBook site with authenticated access using OIDC, the process looks as follows:
OIDC stands for OpenID Connect, and it's an identity layer built on top of OAuth. Many identity providers abide by OIDC, and GitBook's OIDC integration for authenticated access allows you to publish your space behind authenticated access, and access to the content is controlled by your Identity Provider
Create a new application with your identity provider
There are some things that you need to set up on your Identity Provider in order to get the integration to work.
You need to create a new app inside your Identity Provider. Its type should be "Web Application." In Google, you create these under "API and Services", "Credentials", and then under "OAuth 2.0 Client IDs."\

Click on Create Credentials, select OAuth Client ID, select Web Application as the type, name it appropriately, and under Authorized Redirect URIs, enter the Callback URL you got from GitBook.
Click Create. Make a note of the Client ID and Client Secret. We will need these to finish configuring of our integration in GitBook.
Install and configure the OIDC integration
Navigate to integrations within the GitBook app, select authenticated access as the category, and install the OIDC integration. Install the OIDC integration on your chosen docs site.

Once you've installed it on your site, go to configuration and make a note of the Callback URL right above the Save button. We may need it to set up the Identity Provider.
Open up the OIDC integration's configuration screen for the space you installed the integration on.
It should look like the following image

For Client ID and Client Secret, paste in the values you got for your identity provider.
Now, you will need to find the Authorization Endpoint and Access Token Endpoint for your Identity Provider. For Google, these are https://accounts.google.com/o/oauth2/v2/auth and https://oauth2.googleapis.com/token respectively.
For OAuth Scope, its value will be again be different depending on your Identity Provider. In case of Google, you can enter openid.
Hit Save.
Now, in GitBook, close the integrations modal and click on the Manage site button. Navigate to Audience, select Authenticated access, and choose OIDC as the backend. Then, click Update audience. Go to the site’s screen and click Publish. The site is now published behind authenticated access controlled by your Auth0 application. To try it out, click on Visit. You will be asked to sign in with OIDC, which confirms that your site is published behind authenticated access using Auth0.
Last updated
Was this helpful?