Add OIDC (and/ or LDAP) support?
-
wrote on Nov 7, 2023, 11:41 AM last edited by jdaviescoates Nov 7, 2023, 11:46 AM
As far as I can tell, Leantime now supports OIDC - it'd be great to get this added on Cloudron if possible!
Configuration details here:
https://github.com/Leantime/docs/blob/master/installation/configuration.md#openid-conenct-oidc-configurationAlthough I note that says still experimental
But it also supports LDAP, so perhaps we could have that in the meantime? (although really I think we should just try out the OIDC stuff given that's the direction Cloudron is moving in):
https://github.com/Leantime/docs/blob/master/installation/configuration.md#ldap-configuration
-
OIDC is coming. Leantime needs a variant of OIDC which uses private keys. We are implementing this in our OIDC server. Seems the node module we use does not support it for some reason. A number of apps are stuck in this issue including documize, weblate, dokuwiki, guacamole etc.
-
OIDC is coming. Leantime needs a variant of OIDC which uses private keys. We are implementing this in our OIDC server. Seems the node module we use does not support it for some reason. A number of apps are stuck in this issue including documize, weblate, dokuwiki, guacamole etc.
wrote on Nov 7, 2023, 12:45 PM last edited by@girish said in Add OIDC (and/ or LDAP) support?:
Leantime needs a variant of OIDC which uses private keys.
Ah yes, now you mention it I remember reading something about that on here previously
@girish said in Add OIDC (and/ or LDAP) support?:
We are implementing this in our OIDC server.
Great!
-
wrote on Oct 16, 2024, 1:21 PM last edited by
Apologies for the revival if irrelevant.
I am just wondering if this is still on the map and if so, if there is any hint of time until release?Many thanks,
-
@uwcrbc currently, the release is blocked by https://github.com/Leantime/leantime/issues/2710#issuecomment-2422544379 . The CLI doesn't work anymore.
-
Yes it is in our pipeline, but they changed quite a bit how they use laravel and introduced other issues which we have to fix. Somehow all script sourcing is now setup as http:// instead of https:// and thus the browser would block mixed content fetching on Cloudron. Something around the use of
BASE_URLwhich we haven't pinned down yet. -
wrote on Nov 20, 2024, 3:15 PM last edited by
There was an issue with BASE_URL in 3.3.0 but fixed in 3.3.1. Just make sure that LEAN_APP_URL is set as environment variable and that it contains "https://"
-
wrote on Nov 26, 2024, 10:52 AM last edited by
@nebulon Just to confirm: I presume you are saying that the updated package works well, and that you are not saying that the OIDC login works well. Is this correct?
This would seem to match my test: the package does work well in the demo instance, but is without OIDC for now.
Also I suppose the App Status table here is updated regularly, but not automatically which would explain the info/package version discrepancies?
Many thanks again,
-
wrote on Dec 23, 2024, 1:22 PM last edited by
Hi @nebulon I think the app does support OIDC, at least according to this article https://marketplace.leantime.io/product/installation-auth-provider/
Choice of LDAP (OL or AD), OIDC or Google SSO. Works with the open source installation: https://marketplace.leantime.io/product/leantime-open-source-installation/ -
wrote on Dec 23, 2024, 1:25 PM last edited by
If you need a license to integrate this I'm sure Marcel will oblige.
As it is an additional cost option, would you approach this in the same way as Cloudron did for FreeScout, where by default it installs with the app managing its own users, unless the license is purchased? -
wrote on Jan 1, 2025, 1:10 PM last edited by
@girish said in Add OIDC (and/ or LDAP) support?:
@max is Marcel the author of leantime?
Seems so https://github.com/marcelfolaron
-
wrote on Jan 14, 2025, 11:57 PM last edited by
Hi, sorry, I missed your question, yes @jdaviescoates is correct Marcel is.