Switch branches/tags
Nothing to show
Find file History
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.


OpenID Authentication for Microsoft in osTicket

Current Version Notes:

Release - 2018-06-23

Version .2

  • Implementation of Open ID authentication for osTicket.
  • Tested with personal and work accounts
  • Tested on LAMP stack with PHP 7.0.28, osTicket v1.10.1
  • Tested on LEMP stack with PHP 7.2.3-1, osTicket v1.10.1
    • osTicket on LEMP requires additional rewrite rules. This recipe is a good starting point. You'll want to change the following:
      location ~ ^/api/(?:tickets|tasks).*$ {
        try_files $uri $uri/ /api/http.php?$query_string;
      location ~ ^/api/(?:tickets|tasks|auth).*$ {
        try_files $uri $uri/ /api/http.php?$query_string;
    • osTicket has other issues with PHP 7.2
  • Configuration options for auth URL, endpoint, scope, client ID (application ID), and secret

  • Additional options for domain whitelists on staff and client logins, enabling the plugin separately on staff and client logins, plus hiding the local login sections

    Hiding the local logins allows for public registration to be enabled so that accounts don't have to be created in advance screenshot

Installation instructions
  • Upload the phar file to your osTicket/include/plugins directory.
  • Implement validation of id_token. Currently we just parse the token for the user data.
  • Implement ability to use custom sign-in button. Micrsosoft has described branding requirements here.
  • Error handling. If something doesn't map, it'll just go back to the login screen.
Update History
  • v .2 - 2018-06-23
    • Added support to hiding local login information for osTicket-Awesome Theme
    • Corrected issues with detecting staff or client login pages