Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

FEAT: Open ID Connect authentication #4010

Open
wants to merge 15 commits into
base: develop
Choose a base branch
from
Open

FEAT: Open ID Connect authentication #4010

wants to merge 15 commits into from

Conversation

oechsler
Copy link

Continuation of: #2630

  • Merge develop into the feature branch, resolving conflicts
  • Fix issues with the settings list template, where the oidc-config would have the text of the default-site

Tested with Authentik 2024.8.2

P.S.: I hope we can get this finally merged! 🤣

marekful and others added 15 commits February 24, 2023 15:15
@marekful
FEAT: Add Open ID Connect authentication method
caeb293 
* add `oidc-config` setting allowing an admin user to configure parameters
* modify login page to show another button when oidc is configured
* add dependency `openid-client` `v5.4.0`
* add backend route to process "OAuth2 Authorization Code" flow
  initialisation
* add backend route to process callback of above flow
* sign in the authenticated user with internal jwt token if internal
  user with email matching the one retrieved from oauth claims exists

Note: Only Open ID Connect Discovery is supported which most modern
Identity Providers offer.

Tested with Authentik 2023.2.2 and Keycloak 18.0.2
@marekful
chore: add oidc setting db entry during setup
3e2a411
@marekful
chore: improve oidc setting ui
457d1a7
@marekful
chore: add message texts
8350271
@marekful
refactor: improve code structure
bc0b466
@marekful
chore: improve error handling
baee464
@marekful
refactor: satisfy linter requirements
6f98fa6
@marekful
chore: update comments, remove debug logging
df5ab36
@marekful
fix: add database migration for oidc-config setting
ef64edd
@marekful
fix: linter
fd49644
@marekful
fix: add oidc-config setting via setup.js rather than migrations
d0d36a9
@marekful
fix: add oidc logger and replace console logging
6ed6415
@marekful
fix: indentation
0f588ba
@oechsler
Merge remote-tracking branch 'origin/develop' into FEAT/open-id-conne…
0b09f03 
…ct-authentication
@oechsler
Fix configuration template
8b84117
@oechsler oechsler changed the title FEAT: Open ID Cconnect authentication FEAT: Open ID Connect authentication Sep 19, 2024
@CrazyWolf13
Copy link

It's probably worth adding those PRs:

Seems like there are multiple PRs implementing the same feature, it's probably the best to wait for @jc21 to decide which one to merge.

@Shocktrooper
Copy link

@CrazyWolf13 This is a continuation of the abandoned #2630 PR and #3952 was done as part of this PR it looks like. We just need @jc21 to take a look and merge if everything is good

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@oechsler @CrazyWolf13 @Shocktrooper @marekful