Use OIDC token to authenticate API calls #5614
Description
Describe the feature you'd like
Currently, Bookstack only supports native generated API tokens and/or basic authentication to authenticate API calls. In our case, we have Zitadel as SSO and as we'd like to integrate some content from Bookstack in one of our applications, we are having the challenge to fetch this content while respecting user roles in Bookstack.
The easy solution would be, if we can use the existing oidc access_token from Zitadel of the user, to authenticate the API call and thus respecting all security settings in Bookstack.
Describe the benefits this would bring to existing BookStack users
No additional auth to be set-up on Bookstack side for API calls when using SSO already to authenticate Bookstack.
Can the goal of this request already be achieved via other means?
No, only via service-user account with backend filtering after the API call is made.
Have you searched for an existing open/closed issue?
- I have searched for existing issues and none cover my fundamental request
How long have you been using BookStack?
Not using yet, just scoping
Additional context
No response