Skip to main content
Skip table of contents

VidiEditor and Authentication Service

The VidiEditor used in on-prem/hybrid/BYOC context realizes authentication via the centralized authentication service. The required setup should be provided through the deployment scripts. Anyway for troubleshooting it should be mentioned, what Client IDs of the AuthService are relevant for VidiEditor. Specific information like URIs or connection data are removed in those examples.

ClientID: mediaeditorbackend

JSON
{
        "enabled": true,
        "clientId": "mediaeditorbackend",
        "protocolType": "oidc",
        "requireClientSecret": false,
        "clientName": "VidiEditor Back-end Client",
        "description": "",
        "clientUri": "",
        "logoUri": "",
        "requireConsent": false,
        "allowRememberConsent": true,
        "allowedGrantTypes": [
          "client_credentials"
        ],
        "requirePkce": true,
        "allowPlainTextPkce": false,
        "requireRequestObject": false,
        "allowAccessTokensViaBrowser": true,
        "redirectUris": [],
        "postLogoutRedirectUris": [],
        "frontChannelLogoutUri": "",
        "frontChannelLogoutSessionRequired": true,
        "backChannelLogoutUri": "",
        "backChannelLogoutSessionRequired": true,
        "allowOfflineAccess": true,
        "allowedScopes": [
          "openid",
          "identityscope",
          "profile",
          "configportalscope",
          "api1"
        ],
        "alwaysIncludeUserClaimsInIdToken": false,
        "identityTokenLifetime": 3600,
        "allowedIdentityTokenSigningAlgorithms": [],
        "accessTokenLifetime": 10800,
        "authorizationCodeLifetime": 30800,
        "absoluteRefreshTokenLifetime": 2592000,
        "slidingRefreshTokenLifetime": 86400,
        "consentLifetime": null,
        "refreshTokenUsage": 1,
        "updateAccessTokenClaimsOnRefresh": true,
        "refreshTokenExpiration": 1,
        "accessTokenType": 0,
        "enableLocalLogin": true,
        "identityProviderRestrictions": [],
        "includeJwtId": false,
        "claims": [
          {
            "type": "role",
            "value": "MP_API_CONSUMER",
            "valueType": "http://www.w3.org/2001/XMLSchema#string"
          },
          {
            "type": "role",
            "value": "CP_API_CONSUMER",
            "valueType": "http://www.w3.org/2001/XMLSchema#string"
          },
          {
            "type": "client_role",
            "value": "CP_API_CONSUMER",
            "valueType": "http://www.w3.org/2001/XMLSchema#string"
          },
          {
            "type": "vidispine_user",
            "value": "admin",
            "valueType": "http://www.w3.org/2001/XMLSchema#string"
          },
          {
            "type": "sub",
            "value": "admin",
            "valueType": "http://www.w3.org/2001/XMLSchema#string"
          },
          {
            "type": "mediaportal_user",
            "value": "admin",
            "valueType": "http://www.w3.org/2001/XMLSchema#string"
          }
        ],
        "alwaysSendClientClaims": true,
        "clientClaimsPrefix": "",
        "pairWiseSubjectSalt": "",
        "userSsoLifetime": null,
        "userCodeType": "",
        "deviceCodeLifetime": 300,
        "allowedCorsOrigins": [],
        "properties": {},
        "id": 1036,
        "clientSecrets": [
          {
            "description": "Client for backend-to-backend communication of Media Editor",
            "value": "",
            "expiration": null,
            "type": "SharedSecret"
          }
        ]
      }

ClientID: mediaeditorfrontend

JSON
{
        "enabled": true,
        "clientId": "mediaeditorfrontend",
        "protocolType": "oidc",
        "requireClientSecret": false,
        "clientName": "VidiEditor Front-end Client",
        "description": "",
        "clientUri": "",
        "logoUri": "",
        "requireConsent": false,
        "allowRememberConsent": true,
        "allowedGrantTypes": [
          "implicit"
        ],
        "requirePkce": true,
        "allowPlainTextPkce": false,
        "requireRequestObject": false,
        "allowAccessTokensViaBrowser": true,
        "redirectUris": [
        ],
        "postLogoutRedirectUris": [
        ],
        "frontChannelLogoutUri": "",
        "frontChannelLogoutSessionRequired": true,
        "backChannelLogoutUri": "",
        "backChannelLogoutSessionRequired": true,
        "allowOfflineAccess": true,
        "allowedScopes": [
          "configportalscope",
          "api1",
          "mediaeditorscope",
          "profile",
          "identityscope",
          "openid"
        ],
        "alwaysIncludeUserClaimsInIdToken": true,
        "identityTokenLifetime": 3600,
        "allowedIdentityTokenSigningAlgorithms": [],
        "accessTokenLifetime": 10800,
        "authorizationCodeLifetime": 30800,
        "absoluteRefreshTokenLifetime": 2592000,
        "slidingRefreshTokenLifetime": 86400,
        "consentLifetime": null,
        "refreshTokenUsage": 1,
        "updateAccessTokenClaimsOnRefresh": true,
        "refreshTokenExpiration": 1,
        "accessTokenType": 0,
        "enableLocalLogin": true,
        "identityProviderRestrictions": [],
        "includeJwtId": false,
        "claims": [
          {
            "type": "mediaportal_user",
            "value": "admin",
            "valueType": "http://www.w3.org/2001/XMLSchema#string"
          },
          {
            "type": "client_role",
            "value": "CP_API_CONSUMER",
            "valueType": "http://www.w3.org/2001/XMLSchema#string"
          },
          {
            "type": "role",
            "value": "CP_API_CONSUMER",
            "valueType": "http://www.w3.org/2001/XMLSchema#string"
          },
          {
            "type": "role",
            "value": "MP_API_CONSUMER",
            "valueType": "http://www.w3.org/2001/XMLSchema#string"
          }
        ],
        "alwaysSendClientClaims": true,
        "clientClaimsPrefix": "",
        "pairWiseSubjectSalt": "",
        "userSsoLifetime": null,
        "userCodeType": "",
        "deviceCodeLifetime": 300,
        "allowedCorsOrigins": [
        ],
        "properties": {},
        "id": 23,
        "clientSecrets": [
          {
            "description": "Client for VidiEditor GUI",
            "value": "",
            "expiration": null,
            "type": "SharedSecret"
          }
        ]
      }

ClientID: mediaeditorswagger

JSON
{
  "enabled": true,
  "clientId": "mediaeditorswagger",
  "protocolType": "oidc",
  "requireClientSecret": false,
  "clientName": "VidiEditor Swagger UI Client",
  "description": "",
  "clientUri": "",
  "logoUri": "",
  "requireConsent": false,
  "allowRememberConsent": true,
  "allowedGrantTypes": [
    "implicit"
  ],
  "requirePkce": true,
  "allowPlainTextPkce": false,
  "requireRequestObject": false,
  "allowAccessTokensViaBrowser": true,
  "redirectUris": [
  ],
  "postLogoutRedirectUris": [
  ],
  "frontChannelLogoutUri": "",
  "frontChannelLogoutSessionRequired": true,
  "backChannelLogoutUri": "",
  "backChannelLogoutSessionRequired": true,
  "allowOfflineAccess": true,
  "allowedScopes": [
    "api1",
    "configportalscope",
    "mediaeditorscope",
    "profile",
    "identityscope",
    "openid"
  ],
  "alwaysIncludeUserClaimsInIdToken": true,
  "identityTokenLifetime": 3600,
  "allowedIdentityTokenSigningAlgorithms": [],
  "accessTokenLifetime": 10800,
  "authorizationCodeLifetime": 30800,
  "absoluteRefreshTokenLifetime": 2592000,
  "slidingRefreshTokenLifetime": 86400,
  "consentLifetime": null,
  "refreshTokenUsage": 1,
  "updateAccessTokenClaimsOnRefresh": true,
  "refreshTokenExpiration": 1,
  "accessTokenType": 0,
  "enableLocalLogin": true,
  "identityProviderRestrictions": [],
  "includeJwtId": false,
  "claims": [
    {
      "type": "client_role",
      "value": "CP_API_CONSUMER",
      "valueType": "http://www.w3.org/2001/XMLSchema#string"
    }
  ],
  "alwaysSendClientClaims": true,
  "clientClaimsPrefix": "",
  "pairWiseSubjectSalt": "",
  "userSsoLifetime": null,
  "userCodeType": "",
  "deviceCodeLifetime": 300,
  "allowedCorsOrigins": [],
  "properties": {},
  "id": 22,
  "clientSecrets": []
}
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.