repman icon indicating copy to clipboard operation
repman copied to clipboard
verified publisher icon repman-io

[Feature request] Support for OpenID Connect

Open luckyraul opened this issue 5 years ago • 1 comments

Support for OpenID Connect

luckyraul avatar Apr 27 '20 18:04 luckyraul

I was currently thinking about Okta integration, as we use this for internal user authentication. Okta does support OICD, but the first question to tackle is on how to integrate this.

In it's current form, SSO providers like GitLab have to be configured by the instance admin via Environment Variables. However, this means the Repman.io SaaS offering can not easily connect to your custom GitLab instance or GitHub Enterprise (as far as I know off).

Sentry handles this differently, it offers the SSO configured per organization. Some examples:

Login Flow

Regular login page, for non-SSO users Screenshot 2022-09-06 at 16 57 29

The ability login with sso for an organization can be done by going to [instancehost].com/[organization alias] or selecting the tab on the login page and filling out the organization alias: Screenshot 2022-09-06 at 16 57 33

After that you will be greeted with a screen of the available SSO options: Screenshot 2022-09-06 at 16 57 43

Configuring SSO

SSO can be configured in the Organization Settings -> auth, you will see a list of SSO providers available: Screenshot 2022-09-06 at 16 59 57

Then it's just a matter of configuring:

Screenshot 2022-09-06 at 17 01 10 Screenshot 2022-09-06 at 17 00 09

This could also pave the way for https://github.com/repman-io/repman/issues/58 and others

xvilo avatar Sep 06 '22 20:09 xvilo