Dolibarr OIDC
-
Hello.
I was doing some research and I see Dolibarr supports OIDC.
https://wiki.dolibarr.org/index.php?title=Authentication,_SSO_and_SSL
Any possibility of switching to that from LDAP?
Dolibarr is my only Cloudron app using LDAP and not 2fa protected.
-
@vladimir.d has looked into this these days, he may have more insights. However you can also try to get it to work as a Cloudron OpenID client and if it works let us know, then we can integrate it into the package quickly. So far we hit issues around OAuth grants if I recall correctly.
-
I will wait for @vladimir.d to reply
Otherwise I'll attempt to set it up as a Cloudron OIDC client in next couple days. -
Hello all.
I have :
- Edited the conf file:
$dolibarr_main_authentication='openid_connect,dolibarr';
- Enabled the OpenID module:
(I suppose when the package is deployed, you'll want that module enabled by default?) https://www.dolibarr.org/forum/t/help-needed-using-doli-enable-modules-in-docker-installation/29945 seems relevant for that.
I am now at the settings screen:
Hopefully I will shortly have OIDC working. Once I do, should I send some kind of pull request or?
-
If anyone has some time to help me hack on this, it would be greatly appreciated.
I attempted to map the Dollibar OIDC bits to the Cloudron OpenID fields. Not sure if I got it correct. Also, I suppose that the sync script will need to be run even with OIDC?
-
@vladimir.d also has a branch with an attempt to get it working at https://git.cloudron.io/packages/dolibarr-app/-/tree/oidc-v21?ref_type=heads
-
Unfortunately I'm not sure if OpenID auth is working properly in Dolibarr at the moment.
We are facing into same errors as explained at https://github.com/Dolibarr/dolibarr/issues/33974 -
N nebulon marked this topic as a question
-
N nebulon has marked this topic as solved
