semaphore icon indicating copy to clipboard operation
semaphore copied to clipboard
verified publisher icon semaphoreui

Allow to configure OIDC providers from environment variables

Open subuk opened this issue 1 year ago • 2 comments

Hello!

Small change to allow to specify OIDC providers configuration from environment variables

Docs pr: https://github.com/semaphoreui/semaphore-docs/pull/51/

subuk avatar Sep 01 '24 18:09 subuk

Hi, I think OIDC name more suitable than num.

fiftin avatar Oct 13 '24 21:10 fiftin

Okay, let me rename it

subuk avatar Oct 14 '24 06:10 subuk

I really would like to have this feature, that would simplify my docker compose configuration! 👍

What about implementing it like Paperless did it with a single variable that takes the oidc config in json format. That way it could be more flexible and reduces the number of variables.

CFenner avatar Jan 14 '25 19:01 CFenner

Can someone please merge this pull request? Then I can easily add an azure oidc provider to my kubernetes deployment, rather than trying to hack /etc/semaphore/config.yaml at startup time!!! :-)

philenz avatar Jan 20 '25 03:01 philenz

Hi all, any ETA for merging this PR, would really like to not have to use the config.json haxx for my docker deployment.

balpoint avatar Jan 28 '25 18:01 balpoint

Any news on this topic?

e36Alex avatar Feb 15 '25 12:02 e36Alex

@e36Alex Will me in 2.13.

fiftin avatar Feb 15 '25 14:02 fiftin

If I stare at this page, will it make the feature appear more quickly? :D

gaspode avatar Feb 26 '25 23:02 gaspode

Any news on this topic?

e36Alex avatar Mar 17 '25 18:03 e36Alex

Any news?

Skyfay avatar Mar 25 '25 08:03 Skyfay

@mgukov Could you rewrite this feature in Go? We need so support the environment variables like SEMAPHORE_OIDC_github_DISPLAY_NAME.

fiftin avatar Mar 31 '25 11:03 fiftin

Added the ability to configure OIDC providers from environment variable SEMAPHORE_OIDC_PROVIDERS in JSON format.

SEMAPHORE_OIDC_PROVIDERS={"google": {...}, "github":{...}}

mgukov avatar Apr 14 '25 16:04 mgukov

Thanks for adding this feature!

Is there any more documentation how to use it in detail?

e36Alex avatar Apr 17 '25 18:04 e36Alex

Found it here: https://docs.semaphoreui.com/administration-guide/openid/authentik/

agiehoff avatar Apr 26 '25 11:04 agiehoff

Found it here: https://docs.semaphoreui.com/administration-guide/openid/authentik/

But thats not for environment variables...

Skyfay avatar Apr 26 '25 11:04 Skyfay

I could use it with litte adjustment in my docker-compose.yml and it works fine:

SEMAPHORE_OIDC_PROVIDERS: '{ "authentik": { "display_name": "Sign in with Authentik", "provider_url": "https://authentik.example.com/application/o//", "client_id": "", "client_secret": "", "redirect_url": "https://semaphore.example.com/api/auth/oidc/authentik/redirect/", "scopes": ["openid", "profile", "email"], "username_claim": "preferred_username", "name_claim": "preferred_username" }' }

agiehoff avatar Apr 26 '25 11:04 agiehoff

Ah, I see the implementation is a bit strange.

Skyfay avatar Apr 26 '25 11:04 Skyfay