Outline - a Notion-like open source app
-
@nj Wow that's great!
The blog post installs keycloak as an app, but it might work better as a built-in addon that provides ODIC to any app that requests it. I suspect that there are more apps that authenticate via ODIC exclusively, and I can see there are some apps that could use it as an alternative to LDAP.
After some more research, it seems that OAuth used to be the default authentication method for Cloudron apps but it was removed in 2020 due to lack of support in apps. Has the authentication landscape changed in the last 2 years? Is now a good time to add it back? How does SAML look now?
-
@infogulch FWIW, I don't mind adding OpenID into cloudron. It was OAuth that wasn't a great idea. My understanding is that OpenID is more uniform and standardized. @nebulon and @fbartels probably know more about this though.
I guess I mean OpenID connect (OIDC) and not OpenID. I don't know the difference between these terms
-
@girish how about adding oidc as another addon and just ferderate to LDAP? Something like https://github.com/dexidp/dex could be used for this.
Only thinking out loud, never used this myself. Stumpled over it while working on other projects. -
@klawitterb yes, I don't see why not. But as mentioned, I am speaking beyond my expertise here I think @nebulon will know how much work it is on Cloudron side.
-
@klawitterb said in Outline - a Notion-like open source app:
as another addon
Yes, oidc should definitely be an addon (even better if one could just add addons during runtime of an app, so that one does not need to remove and reinstall apps to enable it). But instead of going third party it should be something native to the stack, like the https://docs.cloudron.io/packaging/addons/#proxyauth addon to benefit from existing sessions and the 2fa Cloudron already provides.
-
So I was curious about my proposal and just tried this. Seems to work quote well. Much easier than setting up a fully fledged identity provider like keycloak imho.
Basically dex is a go app which is controlled by a yaml config. Currently just running it inside the outline app itself with a little nginx proxy in front of it. When logging in it redirects to the login mask from dex which then authenticates the user from cloudrons LDAP. -
@klawitterb Nice find and R&D! Looks like this might be just the thing for making Cloudron's LDAP useable by external apps:
-
Update available: Outline v0.63.0
-
Now that Cloudron adds authentication headers with the proxyAuth addon, maybe the easiest solution to integrate authentication is to use those headers in outline. I guess that might be as simple as adding a new file to the /server/routes/auth/providers dir. This would simplify the cloudron package because it wouldn't have to set up and run keycloak.
https://github.com/outline/outline/tree/main/server/routes/auth/providers
Then the only barrier to packaging for cloudron would be the hypothetical s3/minio addon mentioned above.
-
Update available: Outline v0.64.3
PS: Still no time to look into auth using Cloudron ProxyAuth
-
@nj said in Outline - a Notion-like open source app:
PS: Still no time to look into auth using Cloudron ProxyAuth
praying that you'll find the time! Hopefully then @staff will be able to take it from from there get this app into the App Store! (perhaps they could take a look at adding the ProxyAuth too? )
Edit: or perhaps another better/simpler(I've no idea if it's either, rieally! ) option would be to connect the outline app to the Cloudron LDAP Directory Server https://docs.cloudron.io/user-management/#directory-server= ?
-
@jdaviescoates I've got this running using dex serving as a connection between oidc and cloudron ldap. Works pretty well.
If you're interested you can find the code in my repo https://git.apehost.de/cloudron-apps/outline -
@klawitterb that's great, thanks! But I wanna get Outline in the App Store.
Hopefully @staff can take a look at both these custom Outline packages and do whatever needs doing to get them into the store
-
Perhaps AppFlowy can offer an alternative in the meantime?
Local installers available:
-
Outline is paid, it is better to add a free plan also.
There are also free and open source notion alternatives like Logseq or focalboard which can be checked herehttps://developingdaily.com/article/technology/best-notion-alternatives-open-source-and-free/314
-
-
@Vikas-jk said in Outline - a Notion-like open source app:
Outline is paid, it is better to add a free plan also.
There are also free and open source notion alternatives like Logseq or focalboard which can be checked herehttps://developingdaily.com/article/technology/best-notion-alternatives-open-source-and-free/314
Hosted Outline is paid, that doesn't apply to self-hosted. Outline is also free (as in freedom) open source software too.
-
-
-