Skip to content

How to configure Nextcloud integration with Trusted.ID Service#

In this guide, you will learn how to set up Single Sign-On (SSO) in Nextcloud using the Trusted.ID Service system.

📌 Nextcloud is an ecosystem of services for business communications and collaboration, combining calls, video conferencing, chats, and task management.

Setting up login with Trusted.ID Service consists of two key stages performed in two different systems.

Step 1. Create Application#

  1. Log in to Trusted.ID Service.

  2. Create a new application and specify:

    • Application Address - the address of your Nextcloud installation. For example: https://<nextcloud-installation-address>.
    • Redirect URL #1 (Redirect_uri) - the address in the format https://<nextcloud-installation-address>/api/oauth/return.

    🔍 For more details on creating applications, read the instructions.

  3. Open the application settings and copy the values of the following fields:

    • Identifier (Client_id),
    • Secret key (client_secret).

Step 2. Configure Nextcloud#

  1. Log in to Nextcloud with administrator privileges.

  2. Install the Social Login application. This app allows users to log into the Nextcloud system using accounts from third-party services. Read more about the app at apps.nextcloud.com.

    • Go to the Apps section → Social & communication.

    Navigating to the Apps section

    • Click Download and enable for the Social Login app.

    Enabling Social Login

    After installing the app, a Social login subsection will appear in the Administration settings section.

  3. Go to Administration settingsSocial login subsection.

  4. Click the Add connection button button next to the Custom OpenID Connect field.

  5. Fill in the connection parameters:

    • Internal name - specify the internal name of the authentication service as it will appear in Nextcloud settings.
    • Title - specify the name of the authentication service that will be clear to users. This title will be displayed on the login page button and in Nextcloud settings.
    • Authorize url - specify the authorization URL. For example, https://<Trusted.ID Service-installation-address>/api/oidc/auth.
    • URL token - specify the URL for obtaining the access token. For example, https://<Trusted.ID Service-installation-address>/api/oidc/token.
    • Client id - specify the value created in Step 1.
    • Client Secret - specify the value created in Step 1.
    • Scope - specify the necessary permissions to retrieve data. The required scope is openid and the standard scope is profile. When specifying multiple permissions, separate them with a space. For example: profile email openid.

    Connection parameters

  6. If necessary, configure additional settings:

    Additional connection settings

After completing all steps, a login button for Trusted.ID Service will be displayed in the Nextcloud authorization widget.

Step 3. Verify Connection#

  1. Open the Nextcloud login page.
  2. Ensure that the Login with Trusted.ID Service button has appeared.

  3. Click the button and log in using your corporate credentials:

    • You will be redirected to the Trusted.ID Service authentication page;
    • After a successful login, you will be returned to Nextcloud as an authorized user.

    Nextcloud login widget