docs: add sso and idp docs (#668)

* feat: script to pull readme

* chore: update content

* docs: add sso and idp docs

* docs: add entra id oidc sso guide

Author: charIeszhao

docs/docs/recipes/logto-as-idp/configure-3rd-party-app-in-console.mdx

@@ -0,0 +1,54 @@
+import ClientCredentials from './assets/client-credentials.webp';
+import DiscoveryEndpoint from './assets/discovery-endpoint.webp';
+import EndpointDetails from './assets/endpoint-details.webp';
+import RedirectUri from './assets/redirect-uri.webp';
+
+## Create an third-party OIDC application in Logto
+
+Just like how you create a first-party application in Logto, you can also create an application for third-party services that support OIDC. This application will act as an IdP for your third-party applications.
+
+1. Go to the **Logto Console** and navigate to the **Applications** page.
+
+2. Select "Third-party app -> OIDC" as the application type.
+
+   If this is the first time you create an application, click on the **view all** link to see all application types.
+   ![application list](./assets/application-list.webp)
+
+   Otherwise, click on the **create application** button on the top right corner of the page and select "Third-party app -> OIDC" as the application type.
+   ![create application](./assets/create-application.webp)
+
+3. Just like creating a Logto first-party application, enter a **name** and **description** for your application and click on the **create** button. A new third-party OIDC application will be created.
+
+   ![application details](./assets/application-details.webp)
+
+## Setup the OIDC configurations
+
+In order to set up Logto as an IdP for your third-party applications, you need to configure the OIDC settings under the application details page.
+
+1. Provide the **redirect URI** of your third-party application. This is the URL that the third-party application will redirect users to after they are authenticated by Logto. You can usually find this information in the third-party application's IdP connection settings page.
+
+   :::note
+   Logto supports multiple redirect URIs. You can add more redirect URIs by clicking on the **Add another** button.
+   :::
+
+   <img src={RedirectUri} alt="redirect uri" width={500} />
+
+2. Retrieve the **client ID** and **client secret** from Logto application details page and enter them into your service provider's IdP connection settings page.
+
+   <img src={ClientCredentials} alt="client credentials" width={500} />
+
+3. Retrieve the **authorization endpoint** and **token endpoint** from Logto application details page and provide them to your service provider.
+
+   If your service provider supports OIDC discovery, you can simply copy the **discovery endpoint** from Logto application details page and provide it to your service provider. The service provider will be able to retrieve all the up to date OIDC authentication information from the discovery endpoint automatically.
+
+   <img src={DiscoveryEndpoint} alt="discovery endpoint" width={500} />
+
+   Otherwise, click on the **show endpoint details** button to view all the OIDC authentication endpoints.
+
+   <img src={EndpointDetails} alt="endpoint details" width={500} />
+
+## Manage your third-party applications
+
+All third-party applications will be catalogued on the **Applications** page, specifically under the **Third-party apps** tab. This arrangement distinguishes them from first-party applications for you, ensuring easy management.
+
+![third-party apps](./assets/third-party-apps.webp)

docs/docs/recipes/single-sign-on/configure-sso/entra-id-oidc.md

@@ -11,6 +11,8 @@ import endpoints from './assets/entra_id_oidc_endpoints.webp';
 
 # Configure Microsoft Entra ID (Azure AD) OIDC SSO
 
+With minimal configuration efforts, this connector allows integration with Microsoft Entra ID (formerly Azure AD) for enterprise SSO.
+
 ## Step 1: Create an Microsoft EntraID OIDC application
 
 1. Go to the [Microsoft Entra admin center](https://entra.microsoft.com/) and sign in as an administrator.

docs/integrations/fragments/_sso_guide_tip.mdx

@@ -0,0 +1,5 @@
+:::tip
+
+- For more information about SSO and how to configure SSO in Logto, please check out the [Enterprise SSO (SAML & OIDC)](/docs/recipes/single-sign-on/) documentation to get started.
+
+:::

docs/integrations/sso/entra-id-oidc/README.mdx

@@ -0,0 +1,16 @@
+---
+slug: /integrations/entra-id-oidc
+sidebar_label: Microsoft Entra ID (OIDC)
+sidebar_custom_props:
+  description: Formerly Azure AD, a comprehensive cloud-based identity management service.
+  logoFilename: 'entra-id.svg'
+---
+
+import Content from '../../../docs/recipes/single-sign-on/configure-sso/entra-id-oidc.md';
+import GuideTip from '../../fragments/_sso_guide_tip.mdx';
+
+# Microsoft Entra ID (OIDC)
+
+<GuideTip />
+
+<Content />

docs/integrations/sso/entra-id-saml/README.mdx

@@ -0,0 +1,16 @@
+---
+slug: /integrations/entra-id-saml
+sidebar_label: Microsoft Entra ID (SAML)
+sidebar_custom_props:
+  description: Formerly Azure AD, a comprehensive cloud-based identity management service.
+  logoFilename: 'entra-id.svg'
+---
+
+import Content from '../../../docs/recipes/single-sign-on/configure-sso/azure-ad.md';
+import GuideTip from '../../fragments/_sso_guide_tip.mdx';
+
+# Microsoft Entra ID (SAML)
+
+<GuideTip />
+
+<Content />

docs/integrations/sso/google-workspace/README.mdx

@@ -0,0 +1,16 @@
+---
+slug: /integrations/google-workspace
+sidebar_label: Google Workspace
+sidebar_custom_props:
+  description: Unified and secure management of user access within the Google ecosystem.
+  logoFilename: 'google.svg'
+---
+
+import Content from '../../../docs/recipes/single-sign-on/configure-sso/google-workspace.md';
+import GuideTip from '../../fragments/_sso_guide_tip.mdx';
+
+# Google Workspace
+
+<GuideTip />
+
+<Content />

docs/integrations/sso/oidc/README.mdx

@@ -0,0 +1,16 @@
+---
+slug: /integrations/oidc-sso
+sidebar_label: OIDC (Enterprise)
+sidebar_custom_props:
+  description: Modern protocol built on OAuth 2.0 for identity verification in web and mobile apps.
+  logoFilename: 'oidc.svg'
+---
+
+import Content from '../../../docs/recipes/single-sign-on/configure-sso/oidc.md';
+import GuideTip from '../../fragments/_sso_guide_tip.mdx';
+
+# OIDC enterprise SSO
+
+<GuideTip />
+
+<Content />

docs/integrations/sso/okta/README.mdx

@@ -0,0 +1,15 @@
+---
+slug: /integrations/okta
+sidebar_label: Okta
+sidebar_custom_props:
+  description: Centralizes identity management for customers, employees, and partners.
+---
+
+import Content from '../../../docs/recipes/single-sign-on/configure-sso/okta.md';
+import GuideTip from '../../fragments/_sso_guide_tip.mdx';
+
+# Okta enterprise SSO
+
+<GuideTip />
+
+<Content />

docs/integrations/sso/saml/README.mdx

@@ -0,0 +1,16 @@
+---
+slug: /integrations/saml-sso
+sidebar_label: SAML (Enterprise)
+sidebar_custom_props:
+  description: XML-based open standard for web single sign-on and identity federation.
+  logoFilename: 'saml.svg'
+---
+
+import Content from '../../../docs/recipes/single-sign-on/configure-sso/saml.md';
+import GuideTip from '../../fragments/_sso_guide_tip.mdx';
+
+# SAML Enterprise SSO
+
+<GuideTip />
+
+<Content />

docs/integrations/third-party/oidc/README.mdx

@@ -0,0 +1,13 @@
+---
+slug: /integrations/third-party-oidc
+sidebar_label: OIDC (Third-party app)
+sidebar_custom_props:
+  description: Use Logto as a third-party OIDC identity provider (IdP) for your application.
+  logoFilename: 'oidc.svg'
+---
+
+import Content from '../../../docs/recipes/logto-as-idp/configure-3rd-party-app-in-console.mdx';
+
+# Logto as an Identity Provider (IdP)
+
+<Content />

sidebars.js

@@ -85,22 +85,22 @@ const sidebars = {
       className: 'sidebar-section',
     },
     { type: 'autogenerated', dirName: 'integrations/sms' },
-    // {
-    //   type: 'link',
-    //   label: 'Enterprise connectors',
-    //   customProps: { additionalLabel: '(SP-initiated SSO)' },
-    //   href: '#',
-    //   className: 'sidebar-section',
-    // },
-    // { type: 'autogenerated', dirName: 'integrations/sso' },
-    // {
-    //   type: 'link',
-    //   label: 'Third-party apps',
-    //   customProps: { additionalLabel: '(Logto as Idp)' },
-    //   href: '#',
-    //   className: 'sidebar-section',
-    // },
-    // { type: 'autogenerated', dirName: 'integrations/third-party' },
+    {
+      type: 'link',
+      label: 'Enterprise connectors',
+      customProps: { additionalLabel: '(SP-initiated SSO)' },
+      href: '#',
+      className: 'sidebar-section',
+    },
+    { type: 'autogenerated', dirName: 'integrations/sso' },
+    {
+      type: 'link',
+      label: 'Third-party apps',
+      customProps: { additionalLabel: '(Logto as Idp)' },
+      href: '#',
+      className: 'sidebar-section',
+    },
+    { type: 'autogenerated', dirName: 'integrations/third-party' },
   ],
 
   // But you can create a sidebar manually