diff --git a/docs/community/oidc-integrations.md b/docs/community/oidc-integrations.md index 900e6c532..c53301e95 100644 --- a/docs/community/oidc-integrations.md +++ b/docs/community/oidc-integrations.md @@ -15,18 +15,19 @@ has_toc: false | Application | Minimal Version | Notes | |:----------------:|:------------------------------:|:-----------------------------------------------------------------------------------------------------------:| -| Gitea | `1.14.6` | | -| GitLab | `13.0.0` | | -| Grafana | `8.0.5` | | -| Hashicorp Vault | `1.8.1` | | -| MinIO | `RELEASE.2021-11-09T03-21-45Z` | must set `MINIO_IDENTITY_OPENID_CLAIM_NAME: groups` in MinIO and set [MinIO policies](https://docs.min.io/minio/baremetal/security/minio-identity-management/policy-based-access-control.html#minio-policy) as groups in Authelia | -| Nextcloud | `22.1.0` | Tested using the `nextcloud-oidc-login` app - [Link](https://github.com/pulsejet/nextcloud-oidc-login) | -| Wekan | `5.41` | | -| Portainer CE | `2.6.1` | Settings to use username as ID: set `Scopes` to `openid` and `User Identifier` to `preferred_username` | | Bookstack | `21.10` | | -| Harbor | `1.10` | It works on >v2.1 also, but not sure if there is OIDC support on v2.0| -| Verdaccio | `5` | Depends on this fork of verdaccio-github-oauth-ui: [Link](https://github.com/OnekO/verdaccio-github-oauth-ui) | +| Gitea | `1.14.6` | | +| GitLab | `13.0.0` | | +| Grafana | `8.0.5` | | +| Harbor | `1.10` | It works on >v2.1 also, but not sure if there is OIDC support on v2.0 | +| Hashicorp Vault | `1.8.1` | | | Miniflux | `2.0.21` | | +| MinIO | `RELEASE.2021-11-09T03-21-45Z` | must set `MINIO_IDENTITY_OPENID_CLAIM_NAME: groups` in MinIO and set [MinIO policies](https://docs.min.io/minio/baremetal/security/minio-identity-management/policy-based-access-control.html#minio-policy) as groups in Authelia | +| Nextcloud | `22.1.0` | Tested using the `nextcloud-oidc-login` app - [Link](https://github.com/pulsejet/nextcloud-oidc-login) | +| Portainer CE | `2.6.1` | Settings to use username as ID: set `Scopes` to `openid` and `User Identifier` to `preferred_username` | +| Seafile | `9.0.4` | Requires `OAUTH_ATTRIBUTE_MAP` to contain the mapping of the `id` field even if not present in Authelia, e.g. `'id': (False, "unused") (see [seahub#5162](https://github.com/haiwen/seahub/issues/5162)) | +| Verdaccio | `5` | Depends on this fork of verdaccio-github-oauth-ui: [Link](https://github.com/OnekO/verdaccio-github-oauth-ui) | +| Wekan | `5.41` | | ## Known Callback URLs @@ -36,14 +37,15 @@ If you do not find the application in the list below, you will need to search fo | Application | Version | Callback URL | Notes | |:---------------:|:-------------------------------------:|:------------------------------------------------------------------------:|:------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------:| -| Gitea | `1.14.6` | `/user/oauth2/authelia/callback` | `ROOT_URL` in `[server]` section of `app.ini` must be configured correctly. Typically it is `/`. The string `authelia` in the callback url is the `Authentication Name` of the configured Authentication Source in Gitea (Authentication Type: OAuth2, OAuth2 Provider: OpenID Connect). | -| GitLab | `14.0.1` | `/users/auth/openid_connect/callback` | | -| Hasicorp Vault | `14.0.1` | `/oidc/callback` and `/ui/vault/auth/oidc/oidc/callback` | | -| MinIO | `RELEASE.2021-07-12T02-44-53Z` | `/oauth_callback` | | -| Nextcloud | `22.1.0` + `nextcloud-oidc-login` app | `/apps/oidc_login/oidc` | | -| Wekan | `5.41` | `/_oauth_oidc` | | -| Portainer CE | `2.6.1` | `` | | -| Bookstack | `21.10` | `/oidc/callback` | | -| Harbor | `1.10` | `/-/oauth/callback` | | -| Verdaccio | `5` | `/oidc/callback` | | +| Bookstack | `21.10` | `/oidc/callback` | | +| Gitea | `1.14.6` | `/user/oauth2/authelia/callback` | `ROOT_URL` in `[server]` section of `app.ini` must be configured correctly. Typically it is `/`. The string `authelia` in the callback url is the `Authentication Name` of the configured Authentication Source in Gitea (Authentication Type: OAuth2, OAuth2 Provider: OpenID Connect). | +| GitLab | `14.0.1` | `/users/auth/openid_connect/callback` | | +| Harbor | `1.10` | `/-/oauth/callback` | | +| Hasicorp Vault | `14.0.1` | `/oidc/callback` and `/ui/vault/auth/oidc/oidc/callback` | | | Miniflux | `2.0.21` | `/oauth2/oidc/callback` | Set via Miniflux `OAUTH2_REDIRECT_URL` [configuration parameter](https://miniflux.app/docs/configuration.html#oauth2-redirect-url). Example value follows this format | +| MinIO | `RELEASE.2021-07-12T02-44-53Z` | `/oauth_callback` | | +| Nextcloud | `22.1.0` + `nextcloud-oidc-login` app | `/apps/oidc_login/oidc` | | +| Portainer CE | `2.6.1` | `` | | +| Seafile | `9.0.4` | `/oauth/callback/` | Must exactly match `OAUTH_REDIRECT_URL` value as set in `seahub_settings.py` | +| Verdaccio | `5` | `/oidc/callback` | | +| Wekan | `5.41` | `/_oauth_oidc` | |