Comments (3)
The OIDC setup was modified since the last release, please try the current dev version (docker: latest-dev
tag).
So far I was able to make it work with regular authentication, but not filtering for users or groups, as for some reason the scope is displayed on the consent screen, but no value is passed on in the end.
I might have misconfigured something, so if you find out how to pass user email oder group info, please let me know, so I can add it to the documentation!
These are the steps so far to make basic authentication work:
- Open https://entra.microsoft.com/
- Go to Applications / App registration / New registration
- Enter name and for redirect values "Web" and the Gokapi redirect URL shown in the setup
- In Manage / Authentication / Implicit grant and hybrid flows check "ID Tokens"
- In Certificate & secrets / Client secrets click New client secret, enter the value of the secret in Gokapi setup
- In Application / API permissions / click Grant admin consent.
- In Gokapi setup, enter the client ID shown in Application Overview / Application (client) ID
- In Gokapi setup, for provider URL enter
https://login.microsoftonline.com/REALM/v2.0/
and replaceREALM
with the tenant id shown in Application Overview / Directory (tenant) ID (see also https://learn.microsoft.com/en-us/entra/identity-platform/v2-protocols-oidc for other options)
I tried adding the email permission with Api Permissions / add a permission / Microsoft graph/ Delegated Permissions / email and GroupMember.Read.All, but that did not work unfortunately. Are you experienced with Azure / Entra or have any idea how to request it properly?
from gokapi.
Added WIP documentation in 79c9593
from gokapi.
Completed in f322013
from gokapi.
Related Issues (20)
- Feature Request: Environment variables for defaults HOT 3
- SSL Self Signed Cert Lets Encrypt HOT 1
- Create API key option to REST API HOT 2
- Chunk uploading with API
- When removing password with edit button, no hotlink is generated HOT 1
- Updated docs for oidc? HOT 1
- Update docker HOT 3
- Error 400 HOT 2
- Feature: receiving files. HOT 1
- Feature Request: Show filename in the link. HOT 2
- Feature request: Run on startup HOT 5
- v1.8.1 isn't uploaded on Dockerhub HOT 1
- Bug: issuer did not match the issuer returned by provider when using Authentik HOT 5
- Setup asks for S3 credentials, even if set with env variables HOT 3
- [Feature Request] Run as service on non-systemd systems HOT 1
- User not authorised when login in with keycloak HOT 5
- Feature: Multi-User environment
- Question: Failed Uploads HOT 2
- Upload is slower than bandwidth available HOT 26
- No error is displayed when upload fails due to limiting Max Request Body Size (e.g. in nginx) HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from gokapi.