alibaba
Login to nacos console through OIDC
Login to nacos console through OIDC
It's better if the nacos console has the ability to support OIDC. I mean, we can use some third party's user information to login to nacos console quickly, for example, we can use the user information of Dingtalk to login to nacos console as a nocos user as the two user informations' id is matched. Thus, may we can simplify the process of login and make it possible for others take advantage of the OIDC support.
possible solution
Maybe we can add a controller to process the login through OIDC(and some other code to process the config in .properties file), and use the primary code to process the authentication and authorization so we can keep other code not changed at all.
no need for alternative
There are already some basic and most used login mechanisms in nacos such as LDAP, so I haven't mention any alternative.
Nacos是否能提供对OIDC的支持,允许使用第三方提供的身份信息快速地登录nacos控制台。例如我们可以使用与nacos中的用户id匹配的钉钉用户登录到nacos控制台。目的是简化一下登录流程,并且允许其他开发者进一步利用OIDC.
可能的解决方案
增加一个端点处理OIDC登录相关的调用(需要一些额外的代码去处理.properties中相关的配置),使用原有的逻辑处理认证和鉴权,以尽量低的侵入性实现特性。
不需要替代特性或方案
Nacos已经实现一些基础的,使用广泛的登录机制,OIDC也许能成为其中一个。
Thanks for your feedback and contribution. But the issue/pull request has not had recent activity more than 180 days. This issue/pull request will be closed if no further activity occurs 7 days later. We may solve this issue in new version. So can you upgrade to newest version and retry? If there are still issues or want to contribute again. Please create new issue or pull request again.
![stale[bot] avatar](https://avatars.githubusercontent.com/in/1724?v=4 "Published by a pub.dev verified publisher"){kind=small}
so this is the reason why no chosing nacos, use consul instead, they have full support for oidc. https://developer.hashicorp.com/consul/tutorials/datacenter-operations/single-sign-on-auth0
