Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.

  • 1 Votes
    3 Posts

    Already fixed bugs are the best bugs 😆

  • Add OIDC support to Discourse?

    Solved Discourse
    1 Votes
    6 Posts

    The package with OpenID integration for Cloudron SSO is released. However this currently only works with new app instances.

  • Help with OpenID OIDC

    Solved Discuss
    0 Votes
    3 Posts

    @luckow Thank you very much for the detailed explanation. It doesn't seem so complicated anymore. You have helped me a lot. Thank you very much indeed. 👍

  • 1 Votes
    9 Posts

    Link to docs for future reference -

  • 6 Votes
    2 Posts

    The following configuration needs to be added to the identifier registration of Kopano Konnect to enable SSO with Rocketchat:

    - id: name: Rocketchat trusted: true application_type: web redirect_uris: -

    Remember to restart Konnect after modifying the registry. If you want to verify that the configuration was properly loaded you have to modify log_level in /app/data/konnectd.cfg to read /app/data/konnectd.cfg. With another restart Konnect will then print a message like the following at startup:

    Apr 20 20:21:30 time="2020-04-20T18:21:30Z" level=debug msg="registered client" application_type=web insecure=false origins="[]" redirect_uris="[]" trusted=true with_client_secret=false

    In the following configuration needs to be added. For this go into the admin backend, select "OAuth" and there "Add custom oauth". I am using the following settings:

    URL: Token Path: /konnect/v1/token Token Sent Via: Header Identity Token Sent Via: Same as "Token Sent Via" Identity Path: /konnect/v1/userinfo Authorize Path: /signin/v1/identifier/_/authorize Scope: openid profile email Id: Secret: rocketchat Login Style: Default Button Text: Kopano Konnect (needs to be something the user can relate to) Button Text Color: #FFFFFF Button Color: #13679A Username field: preferred_username Merge users: false

    After storing these log out of and you will see a new button on your login page titled "Kopano Konnect", which will then use the new login method.

  • External OAuth applications

    Solved Support
    0 Votes
    10 Posts

    Since we have added an OpenID connect and thus some OAuth2 compatibility, I will mark this as solved finally.