Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Feature request] NextAuth Providers for OAuth/SSO #92

Closed
schmoaaaaah opened this issue Apr 9, 2024 · 12 comments
Closed

[Feature request] NextAuth Providers for OAuth/SSO #92

schmoaaaaah opened this issue Apr 9, 2024 · 12 comments
Labels
feature request New feature or request

Comments

@schmoaaaaah
Copy link

The ability to use the NextAuth Providers for OAuth Authentication would be nice.
@MohamedBassem MohamedBassem added the feature request New feature or request label Apr 9, 2024
@linedpaper
Copy link

Agreed, any sort of external would be great!

@kamtschatka
Copy link
Collaborator

which providers would be most interesting? there are 60+ proviers, that is a bit much ;-)

@MohamedBassem
Copy link
Collaborator

@kamtschatka I'd add only the generic oauth one

@schmoaaaaah
Copy link
Author

You could also do it with big ENV vars:

providers: |
  AuthentikProvider({
    clientId: process.env.AUTHENTIK_ID,
    clientSecret: process.env.AUTHENTIK_SECRET,
    issuer: process.env.AUTHENTIK_ISSUER,
  })

and add them to the provideres array in Nextauth, but I agree the Generic Oauth would be easier to implement.

@SeeJayEmm
Copy link

I don't know anything about Nextauth but any generic OAuth or SAML implementation would be good. Whichever you find easiest to implement.

@gtzapper
Copy link

gtzapper commented Jul 10, 2024
edited
Loading

+1 , any generic oauth will be good.

kamtschatka added a commit to kamtschatka/hoarder-app that referenced this issue Jul 14, 2024
@kamtschatka
https://github.com/hoarder-app/hoarder/issues/92
58d62a9 
Added support for custom OIDC providers to set up authentication
kamtschatka added a commit to kamtschatka/hoarder-app that referenced this issue Jul 20, 2024
@kamtschatka
Added support for custom OIDC providers to set up authentication hoar…
2e25532 
…der-app#92

Showing OAuth errors in the signin page
kamtschatka added a commit to kamtschatka/hoarder-app that referenced this issue Jul 26, 2024
@kamtschatka
Added support for custom OIDC providers to set up authentication hoar…
eb9fa59 
…der-app#92

Added the possibility to log in using an API key in case OAuth is used
kamtschatka added a commit to kamtschatka/hoarder-app that referenced this issue Jul 28, 2024
@kamtschatka
Added support for custom OIDC providers to set up authentication hoar…
77465c6 
…der-app#92

improved the code to also promote the first user to admin if OAuth is used
@kamtschatka kamtschatka mentioned this issue Sep 15, 2024
Open
kamtschatka added a commit to kamtschatka/hoarder-app that referenced this issue Sep 17, 2024
@kamtschatka
[Feature request] NextAuth Providers for OAuth/SSO hoarder-app#92
835defd 
Added API key based authentication to the extension to make the extension usable when OAuth is in use
@Daniel15 Daniel15 mentioned this issue Sep 21, 2024
Closed
MohamedBassem added a commit that referenced this issue Sep 21, 2024
@kamtschatka @MohamedBassem
feature(extension): Allow login directly with an API key
26521b7 
* [Feature request] NextAuth Providers for OAuth/SSO #92
Added API key based authentication to the extension to make the extension usable when OAuth is in use

* Minor UI tweak

---------

Co-authored-by: MohamedBassem <me@mbassem.com>
@MohamedBassem
Copy link
Collaborator

For all the people waiting for SSO, it's now released in version 0.17 and you have @kamtschatka to thank for that! I know that this was a popular request and it took us some time to get to it, but it's finally here!

Note, if the account is created for the first time using SSO (no password configured), you'll have to use the new "login by API keys" in the extension and the mobile apps. The new mobile app versions that introduce this feature are currently under review by google/apple.

If you already have an account, and you want to link it with the SSO account after configuring it, you'll want to set OAUTH_ALLOW_DANGEROUS_EMAIL_ACCOUNT_LINKING=true.

Give it a try and let us know if you have any questions!

@MohamedBassem
Copy link
Collaborator

@MFYDev I've just pushed the new documentation version, you can find it here: https://docs.hoarder.app/configuration#authentication--signup :)

Sorry I should have linked that earlier!

@MFYDev
Copy link

MFYDev commented Sep 22, 2024

Thank you, just tested and it is working well with Authentik, however can we get an option to disable the default password log in form?

@MohamedBassem
Copy link
Collaborator

@MFYDev Glad that it's working well! I think this is a reasonable feature request. Can you file a separate issue for it? Shouldn't be too hard to implement :)

@MFYDev
Copy link

MFYDev commented Sep 22, 2024

Sure, thank you, on it!

@MFYDev MFYDev mentioned this issue Sep 22, 2024
Closed
@MFYDev
Copy link

MFYDev commented Sep 22, 2024

@MohamedBassem Done, just created the FR

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature request New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
7 participants
@SeeJayEmm @MohamedBassem @linedpaper @kamtschatka @schmoaaaaah @MFYDev @gtzapper