borgwarehouse icon indicating copy to clipboard operation
borgwarehouse copied to clipboard
Published 1 week ago verified publisher icon Ravinou

OIDC / OAuth Support

Open speatzle opened this issue 1 year ago • 6 comments

Hi, i recently found BorgWarehouse and have been liking it so far.

I run BorgWarehouse behind Caddy as my Reverse Proxy and am using Authelia for Central User management and Reducing the Attack Surface (only Users logged into Authelia can send HTTP(s) Requests to BorgWarehouse and my other services preventing scanning and potential exploitation).

The only Problem i have is that this means i have to log in twice (once into Authelia and once into BorgWarehouse).

With other services i host i can use OIDC (OAuth) to Login using Authelia's session automatically or by pressing a Dedicated Button on the Login Page.

Alternatively Authelia also Supports Trusted Header SSO where the Service gets HTTP headers from the Proxy containing the Username and Group of the Currently logged in user (in Authelia) completely eliminating the necessity for session management by the Service, here is a introduction: https://www.authelia.com/integration/trusted-header-sso/introduction/

It would be much appreciated if you could support either of these options.

speatzle avatar Mar 11 '24 19:03 speatzle

I don't believe that Next-Auth has support built for Authelia but a custom OIDC config can easily be made following the guide at https://next-auth.js.org/configuration/providers/oauth#using-a-custom-provider

rpirsc13 avatar May 02 '24 16:05 rpirsc13

This would be really cool.

Menschomat avatar Sep 25 '24 14:09 Menschomat