Integrate DingTalk authentication
About DingTalk
DingTalk authentication is an identity verification method based on DingTalk, supporting OAuth 2.0 authorization, QR code login, and enterprise identity binding, enabling secure and convenient enterprise user login and management.
How to configure
Navigate to System settings > Authentication > DingTalk.
In the DingTalk field, check to enable DingTalk authentication.
In the Agent ID field, type the DingTalk agent ID, which uniquely identifies a micro-application within the enterprise and is primarily used for sending work notifications.
In the App key field, type the DingTalk app key, a unique identifier for the application, similar to a username for API access.
In the App secret field, type the DingTalk app secret, similar to a password for API access, used to obtain AccessToken for calling APIs.
In the User attribute field, type the user attribute mapping. The key represents the JumpServer user attribute name (available options: name, username, email, phone, comment), while the value corresponds to the DingTalk user attribute name.
{
"name": "name",
"username": "name",
"email": "email"
}In the Organization field, after authentication and creation, the user will be added to the selected organization.
Click Submit.
Test DingTalk connection
Navigate to System settings > Authentication > DingTalk.
Scroll to the bottom of the page
Click Test.
JumpServer DingTalk URLs
https://jumpserver.example.com/core/auth/dingtalk/qr/login/https://jumpserver.example.com/core/auth/dingtalk/qr/login/callback/https://jumpserver.example.com/core/auth/dingtalk/oauth/login/https://jumpserver.example.com/core/auth/dingtalk/oauth/login/callback/