Skip to content

Open id connect authentication #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 31 commits into from
Mar 14, 2025
Merged

Open id connect authentication #2

merged 31 commits into from
Mar 14, 2025

Conversation

lhoekenga
Copy link
Owner

No description provided.

marekful and others added 30 commits February 24, 2023 15:15
@marekful
FEAT: Add Open ID Connect authentication method
caeb293 
* add `oidc-config` setting allowing an admin user to configure parameters
* modify login page to show another button when oidc is configured
* add dependency `openid-client` `v5.4.0`
* add backend route to process "OAuth2 Authorization Code" flow
  initialisation
* add backend route to process callback of above flow
* sign in the authenticated user with internal jwt token if internal
  user with email matching the one retrieved from oauth claims exists

Note: Only Open ID Connect Discovery is supported which most modern
Identity Providers offer.

Tested with Authentik 2023.2.2 and Keycloak 18.0.2
@marekful
chore: add oidc setting db entry during setup
3e2a411
@marekful
chore: improve oidc setting ui
457d1a7
@marekful
chore: add message texts
8350271
@marekful
refactor: improve code structure
bc0b466
@marekful
chore: improve error handling
baee464
@marekful
refactor: satisfy linter requirements
6f98fa6
@marekful
chore: update comments, remove debug logging
df5ab36
@marekful
fix: add database migration for oidc-config setting
ef64edd
@marekful
fix: linter
fd49644
@marekful
fix: add oidc-config setting via setup.js rather than migrations
d0d36a9
@marekful
fix: add oidc logger and replace console logging
6ed6415
@marekful
fix: indentation
0f588ba
@oechsler
Merge remote-tracking branch 'origin/develop' into FEAT/open-id-conne…
0b09f03 
…ct-authentication
@oechsler
Fix configuration template
8b84117
@oechsler
Merge remote-tracking branch 'origin/develop' into FEAT/open-id-conne…
7196dfa 
…ct-authentication
@oechsler
Add oidc-config to OpenAPI schema
0b126ca
@oechsler
Update yarn.lock
7ef52d8
@oechsler
Enforce token auth for odic config PUT call
1a030a6
@oechsler
Remove nodemon dependency in package.json
eb312cc 
as it is already in devDependencies
@chutch1122
Make the error message for when a user does not exist when attempting…
637b773 
… to login via OIDC more user-friendly.
@chutch1122
Add documentation for configuring SSO with OIDC
e4b87d0
@chutch1122
Make 'Redirect URL' match the name of the field.
81aa8a4
@chutch1122
Add Cypress tests for updating the OIDC configuration
1ed15b3
@chutch1122
Add UI E2E tests for the login page for OIDC being enabled and when i…
529c84f 
…t is disabled
@chutch1122
Update warning in documentation to be consistent with the rest of the…
6e41d7b 
… page
@oechsler
Merge pull request #1 from chutch1122/FEAT/open-id-connect-authentica…
2cae60d 
…tion

Add Cypress tests and documentation
@chutch1122
Merge remote-tracking branch 'upstream/develop' into FEAT/open-id-con…
d714fee 
…nect-authentication
@chutch1122
Update error messages for login tests
46f0b52
@oechsler
Merge pull request #2 from chutch1122/FEAT/open-id-connect-authentica…
03fbebc 
…tion

Merge upstream and update test expectations
@lhoekenga lhoekenga merged commit 2fe3639 into develop Mar 14, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@lhoekenga @marekful @oechsler @chutch1122