9.3 KiB
9.3 KiB
layout | title | parent | nav_order | has_children | has_toc |
---|---|---|---|---|---|
default | Community-Tested OIDC Integrations | Community | 5 | true | false |
OIDC Integrations
Note This is community-based content for which the core-maintainers cannot guarantee correctness. The parameters may change over time. If a parameter does not work as documented, please submit a PR to update the list.
Currently Tested Applications
Application | Minimal Version | Notes |
---|---|---|
Bookstack | 21.10 |
|
Gitea | 1.14.6 |
|
GitLab | 13.0.0 |
|
Grafana | 8.0.5 |
|
Harbor | 1.10 |
It works on >v2.1 also, but not sure if there is OIDC support on v2.0 |
Hashicorp Vault | 1.8.1 |
|
Miniflux | 2.0.21 |
|
MinIO | RELEASE.2021-11-09T03-21-45Z |
must set MINIO_IDENTITY_OPENID_CLAIM_NAME: groups in MinIO and set MinIO policies as groups in Authelia |
Nextcloud | 22.1.0 |
Tested using the nextcloud-oidc-login app - Link |
Portainer CE | 2.6.1 |
Settings to use username as ID: set Scopes to openid and User Identifier to preferred_username |
Seafile | 9.0.4 |
Requires OAUTH_ATTRIBUTE_MAP to contain the mapping of the id field even if not present in Authelia, e.g. `'id': (False, "unused") (see seahub#5162) |
Verdaccio | 5 |
Depends on this fork of verdaccio-github-oauth-ui: Link |
Wekan | 5.41 |
Known Callback URLs
If you do not find the application in the list below, you will need to search for yourself - and maybe come back to open a PR to add your application to this list so others won't have to search for them.
<DOMAIN>
needs to be substituted with the full URL on which the application runs on. If GitLab, as an example, was reachable under https://gitlab.example.com
, <DOMAIN>
would be exactly the same.
Application | Version | Callback URL | Notes |
---|---|---|---|
Bookstack | 21.10 |
<DOMAIN>/oidc/callback |
|
Gitea | 1.14.6 |
<DOMAIN>/user/oauth2/authelia/callback |
ROOT_URL in [server] section of app.ini must be configured correctly. Typically it is <DOMAIN>/ . The string authelia in the callback url is the Authentication Name of the configured Authentication Source in Gitea (Authentication Type: OAuth2, OAuth2 Provider: OpenID Connect). |
GitLab | 14.0.1 |
<DOMAIN>/users/auth/openid_connect/callback |
|
Harbor | 1.10 |
<DOMAIN>/-/oauth/callback |
|
Hasicorp Vault | 14.0.1 |
<DOMAIN>/oidc/callback and <DOMAIN>/ui/vault/auth/oidc/oidc/callback |
|
Miniflux | 2.0.21 |
<DOMAIN>/oauth2/oidc/callback |
Set via Miniflux OAUTH2_REDIRECT_URL configuration parameter. Example value follows this format |
MinIO | RELEASE.2021-07-12T02-44-53Z |
<DOMAIN>/oauth_callback |
|
Nextcloud | 22.1.0 + nextcloud-oidc-login app |
<DOMAIN>/apps/oidc_login/oidc |
|
Portainer CE | 2.6.1 |
<DOMAIN> |
|
Seafile | 9.0.4 |
<DOMAIN>/oauth/callback/ |
Must exactly match OAUTH_REDIRECT_URL value as set in seahub_settings.py |
Verdaccio | 5 |
<DOMAIN>/oidc/callback |
|
Wekan | 5.41 |
<DOMAIN>/_oauth_oidc |