C1 provides identity governance for Logto. Integrate your Logto tenant with C1 for unified visibility and governance over user access.
C1 provides identity governance for Logto. Integrate your Logto tenant with C1
for unified visibility and governance over user access across your
organizations.
To configure the Logto connector, you need administrator access to your Logto
tenant so you can create a machine-to-machine application and grant it the
Management API permission.
1
Sign in to the Logto Console for your tenant and open Applications.
Create a new Machine-to-machine application (or reuse an existing one).
2
Grant the application access to the Logto Management API. This is what
lets the connector read users, organizations, and role assignments.
3
From the application page, copy the App ID and App Secret. The
secret is shown when the application is created; rotate it from the same
page if you need a new one.
4
Note your tenant’s base URL (for Logto Cloud this is
https://<tenant-id>.logto.app). The token endpoint is <base URL>/oidc/token
and the Management API resource indicator is <base URL>/api. For a
self-hosted deployment the resource indicator is the logical
https://default.logto.app/api.
Follow these instructions to use a built-in, no-code connector hosted by C1.
1
In C1, navigate to Integrations > Connectors and click Add connector.
2
Search for Logto and click Add.
3
Choose how to set up the new Logto connector.
4
Set the owner for this connector.
5
Click Next.
6
Find the Settings area of the page and click Edit.
7
Enter the Logto credentials:
Base URL: Your tenant URL, for example https://acme.logto.app.
Token URL: Your tenant token endpoint, for example https://acme.logto.app/oidc/token.
Management API resource: The Management API resource indicator, for example https://acme.logto.app/api.
Client ID: The machine-to-machine application’s App ID.
Client secret: The machine-to-machine application’s App Secret.
8
Click Save.
9
The connector’s label changes to Syncing, followed by Connected. You can view the logs to ensure that information is syncing.
Done. Your Logto connector is now pulling access data into C1.
Follow these instructions to run the Logto connector in your own
environment.
1
Create secrets for the Logto machine-to-machine credentials.
2
Configure the connector with your tenant’s base URL, token URL,
Management API resource indicator, Client ID, and Client secret.
3
Deploy the connector using your standard self-hosted connector process.
Done. Your Logto connector is now pulling access data into C1.
On Logto Cloud, the Organizations feature is available on the free Development
tenant for testing. Production tenants may require a paid plan to use
Organizations; if your tenant has no organizations, the connector will sync
users only.
