Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Oauth (via socialite) #385

Open
1 of 4 tasks
Boy132 opened this issue Jun 13, 2024 · 6 comments
Open
1 of 4 tasks

Oauth (via socialite) #385

Boy132 opened this issue Jun 13, 2024 · 6 comments
Assignees
@Boy132
Labels
✨ feature New feature 🟡 medium Somewhat challenging
Milestone
rc1

Comments

@Boy132
Copy link
Member

Boy132 commented Jun 13, 2024
edited
Loading

https://laravel.com/docs/11.x/socialite
https://socialiteproviders.com/

  • Backend (Add OAuth backend #386)
  • Frontend
  • Add more providers (e.g. authentik, google, microsoft, steam)
  • Make it easier to add additional providers (without code edit)
@Boy132 Boy132 added ✨ feature New feature 🔴 hard Fairly difficult labels Jun 13, 2024
@Boy132 Boy132 changed the title Oauth (via socalite) Oauth (via socialite) Jun 13, 2024
@Boy132 Boy132 mentioned this issue Jun 13, 2024
Merged
@Boy132 Boy132 added 🟡 medium Somewhat challenging and removed 🔴 hard Fairly difficult labels Jun 14, 2024
@KeySC07
Copy link

KeySC07 commented Jun 15, 2024

Would be nice to see an option for JIT(Just-In-Time) provisioning added to create users upon sign-in via SSO.

@KeySC07 KeySC07 mentioned this issue Jun 15, 2024
Open
@timoschirmer
Copy link

Would love to see support for authentik or some kind of generic oauth2 provider in the future.

@KeySC07
Copy link

KeySC07 commented Jun 15, 2024

Would love to see support for authentik or some kind of generic oauth2 provider in the future.

Authentik is already supported see here https://socialiteproviders.com/Authentik/#installation-basic-usage
just gotta make some changes to get it working.

@andyondrya

This comment was marked as outdated.

Sign in to view
@RMartinOscar

This comment was marked as outdated.

Sign in to view
@KeySC07
Copy link

KeySC07 commented Jun 18, 2024

Would be nice to see enforce MFA as an option as well.

Using the amr attribute within the OAuth token contains the types auth the user has completed
at the identity provider, an example:
"amr": [
"pwd",
"mfa"
],

You could use this to add an option to enforce MFA which would deny the login if the amr token doesn't contain "mfa".

@lancepioch lancepioch added this to the 1.0 milestone Jun 26, 2024
@Poseidon281 Poseidon281 mentioned this issue Jun 27, 2024
Closed
@EkiciLP EkiciLP mentioned this issue Aug 14, 2024
Closed
@Boy132 Boy132 self-assigned this Aug 14, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Boy132 Boy132

Labels
✨ feature New feature 🟡 medium Somewhat challenging
Projects
None yet
Milestone
rc1
Development

No branches or pull requests
6 participants
@lancepioch @Boy132 @RMartinOscar @andyondrya @timoschirmer @KeySC07