title | description | summary | date | draft | images | weight | toc | community | seo | ||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Odoo |
Integrating Odoo with the Authelia OpenID Connect 1.0 Provider. |
2024-03-31 14:46:10 +1100 |
false |
620 |
true |
true |
|
{{% oidc-common %}}
This example makes the following assumptions:
- Application Root URL:
https://odoo.example.com/
- Authelia Root URL:
https://auth.example.com/
- Client ID:
odoo
The following YAML configuration is an example Authelia client configuration for use with Odoo which will operate with the application example:
identity_providers:
oidc:
clients:
- client_id: 'odoo'
client_name: 'Odoo'
public: true
authorization_policy: 'two_factor'
redirect_uris:
- 'https://odoo.example.com/auth_oauth/signin'
scopes:
- 'openid'
- 'email'
- 'profile'
response_types:
- 'token'
userinfo_signed_response_alg: 'none'
token_endpoint_auth_method: 'client_secret_basic'
To configure Odoo to utilize Authelia as an OpenID Connect 1.0 Provider:
- Enable OAuth in General Settings/Integrations, save and reload.
- Create a new OAuth Provider in General Settings/Integrations/OAuth Providers, with the following settings:
- Provider name : Authelia
- Client ID : odoo
- Allowed : checked
- Login button label : Authelia
- Authorization URL : https://auth.example.com/api/oidc/authorization
- Scope : openid profile email
- UserInfo URL : https://auth.example.com/api/oidc/userinfo
- Data Endpoint : https://auth.example.com/jwks.json
- If you want your Authelia user to have a guest access on Odoo, you need to enable it in General Settings/Permissions/Customer Account/Free sign up
- If you want to allow an already existing user in Odoo to use its Authelia login:
- Ask the user to reset its password
- When Odoo prompt for the new password, select the "Connect with Authelia" button