Stirling-PDF icon indicating copy to clipboard operation
Stirling-PDF copied to clipboard
Published 1 day ago verified publisher icon Stirling-Tools

Option to enable automatic SSO login

Open guyke01 opened this issue 1 year ago • 4 comments

Is it possible to make a option to enable Automatic SSO login when enabled in the config? As example a option like SECURITY_OAUTH2_AUTO_LOGIN=true.

If this setting is true the login screen will be skipped and redirected automatically to the SSO service.

guyke01 avatar May 19 '24 14:05 guyke01

What would the default provider be?

sbplat avatar May 27 '24 01:05 sbplat

It would be the provider you've setup in the SECURITY_OAUTH2_ISSUER. In my case it is Authentik.

The local login would not be usable unless you set the new environment variable to false so no automatic redirect would happen.

guyke01 avatar May 27 '24 04:05 guyke01

If you are using a proxy you can add a rewrite rule to do this, nginx example below.

rewrite ^/login$ /oauth2/authorization/oidc;

seang96 avatar Jun 26 '24 14:06 seang96

Is there any progress here? The silent login-option is a perfect way to prevent strangers of using the service, without causing any friction. Now it takes two clicks every day - one to select SSO and one to select the only SSO-provider configured.

The rewrite-rule is elegant, but I found that my knowledge on docker compose and nginx-proxy is limited to configure that.

I would suggest using the name of the OAUTH-provider, such that a backup can silently be configured. In case of Murphy, the fall-back SSO-provider can be enabled. SECURITY_OAUTH2_AUTOLOGINPROVIDER=keycloak

VincentSC avatar Sep 20 '24 07:09 VincentSC

Provided as a Enterprise feature

Frooodle avatar Jan 21 '25 10:01 Frooodle