The WoodWing Identity Service (WIS) is a cloud-only service for WoodWing Cloud customers in which administrators can manage users and user groups in a central location, and give these users access to one or more WoodWing products.
Setting up users and user groups can be done in one of two ways:
- Manually
- By integrating a Single Sign-On (SSO) provider; users and user groups are then automatically imported.
Note: A mix of these methods is also possible.
This article describes how to set up and manage users in the WoodWing Identity Service using an external identity provider.
The process is as follows:
- The identity provider is connected to the WoodWing Identity Service.
- User groups are optionally given the role of 'owner'.
- Users and tenants are added to a group.
Supported providers
The following SSO providers are supported:
- OpenID
We cannot test compatibility with all identity platforms but the following have been tested:
User group roles
Within the WoodWing Identity Service, a user group can have one of two roles
- A default role. Users within a group with this role can only access their profile page. This role is used for all users who should not have admin access to the WoodWing Identity Service.
- The role of owner. Users within a group with this role can access all areas of the WoodWing Identity Service and set up and manage users, user groups, and an external identity provider.
Limitations
When working with users, user groups, and tenants, take note of the following limitations:
| Soft limit | Hard limit | |
|---|---|---|
| Groups per user | 50 | 100 |
| Groups per organization | 50 | 500 |
| Users per group | 100 | 10,000 |
| Users per organization | 100 | 10,000 |
| Tenants per organization | 100 | 100 |
| Maximum group name length | 256 | 256 |
| Maximum e-mail address length | 254 | 254 |
| Maximum organization name length | 64 | 64 |
Adding an identity provider
Note: Only one connection to a provider can be made.
Step 1. Log in to the WoodWing Identity Service as a user that is part of a group with the role of 'owner'.
Step 2. Access the Settings page.
A page appears with information about the organization, including any identity provider that is set up.
Step 3. To set up an identity provider, click Set up or edit in the Identity provider section.
A panel appears in which the identity provider can be configured.
Step 4. Set up your connection as needed:
- OIDC. The OpenID Connect Single Sign-On (OIDC SSO) is an authentication protocol built on top of the OAuth 2.0 framework. It enables users to authenticate once and gain access to multiple applications without needing to log in separately for each one. OIDC SSO enhances security and streamlines the user experience by providing a standardized and efficient approach to identity verification.
Step 5. When done, click Set up. The users and user groups are then imported into the WoodWing Identity Service.
Assigning the 'owner' role to a group
Users who should be able to manage users, user groups, and identity providers in the WoodWing Identity Service should be part of a group to which the 'owner' role is assigned.
To do this, select one or more groups on the Groups page, click Promote, and confirm the action.
|
For each user who acts as an administrator, a Content Manager license is required (except when Assets is used during the trial period). Make sure a sufficient number of licenses is (temporarily) available before starting. Before making other users admin, be aware that they can make changes to all aspects of Assets, including:
|
Adding users and tenants to a group
When users and user groups have been added, user groups can be fully set up.
Step 1. On the Groups page, select the group that you want to edit and click Edit.
A panel appears containing the following tabs:
- Group info. Shows a summary of the number of users and tenants that are part of the group, and an option to change the name of the group.
- Users. Shows a list of all users that have been set up in the WoodWing Identity Service. Click the check box for the users who should be part of the group, and clear the check box for the users who should not be part of the group.
- Tenants. Shows all tenants that have been made available to the organization (this is managed by WoodWing). Click the check box for the tenants that users in the group should have access to, and clear the check box for the tenants that users in the group should not have access to.
Step 2. Make the necessary changes and when done click Save.
Revisions
- 24 November 2025: Removed references of SAML.
Comment
Do you have corrections or additional information about this article? Leave a comment! Do you have a question about what is described in this article? Please contact Support.
0 comments
Please sign in to leave a comment.