website/docs: Add OIDC auth integration with Nextcloud

[sdimovv]

Details

Adds detailed docs on setting up OIDC authentication with Nextcloud. Includes tips and warnings against common pitfalls when setting up different configurations

Checklist

• Local tests pass (ak test authentik/)
• The code has been formatted (make lint-fix)

If an API change has been made

• The API schema has been updated (make gen-build)

If changes to the frontend have been made

• The code has been formatted (make web)
• The translation files have been updated (make i18n-extract)

If applicable

• The documentation has been updated
• The documentation has been formatted (make website)

[netlify]

✅ Deploy Preview for authentik-storybook canceled.

Name	Link
🔨 Latest commit	ff0cf52
🔍 Latest deploy log	https://app.netlify.com/sites/authentik-storybook/deploys/655e198675b1680008564e0d

[netlify]

✅ Deploy Preview for authentik ready!

Name	Link
🔨 Latest commit	ff0cf52
🔍 Latest deploy log	https://app.netlify.com/sites/authentik/deploys/655e1986c009fa0008d2ba77
😎 Deploy Preview	https://deploy-preview-7406--authentik.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.
Lighthouse	1 paths audited Performance: 94 (🔴 down 3 from production) Accessibility: 90 (no change from production) Best Practices: 100 (no change from production) SEO: 80 (no change from production) PWA: - View the detailed breakdown and full score reports

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (345022f) 92.17% compared to head (ff0cf52) 92.64%.
Report is 205 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #7406      +/-   ##
==========================================
+ Coverage   92.17%   92.64%   +0.47%     
==========================================
  Files         587      588       +1     
  Lines       28895    29140     +245     
==========================================
+ Hits        26634    26997     +363     
+ Misses       2261     2143     -118     

Flag	Coverage Δ
e2e	50.71% <ø> (+1.39%)	⬆️
integration	25.93% <ø> (-0.09%)	⬇️
unit	89.71% <ø> (+0.11%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[sdimovv]

@BeryJu can I get a merge please :D

[rissson]

Do you mind moving the OIDC section below the SAML one as it requires an additional nextcloud app to be installed? Also, let's add a quick sentence stating there are two different protocols that can be configured and linking to the specific section for each of them.

[sdimovv]

Do you mind moving the OIDC section below the SAML one as it requires an additional nextcloud app to be installed? Also, let's add a quick sentence stating there are two different protocols that can be configured and linking to the specific section for each of them.

I can add the section about the different protocols, no problem. However, I think you misunderstood what is required for SAML. Both auth methods require the installation of an additional app in Nextcloud. Both apps are "official", that is provided by the Nexcloud devs. However, neither of them comes installed with vanilla Nextcloud install. So the "extra" requirements for both are the same.

That being said I can still move it below SAML if you insist. I put it first since I believe most people will want to set up OIDC, as it is generally more popular than SAML.

[rissson]

Ah I misremembered then, it's fine as it is then!

[sdimovv]

@rissson
Does this need anything else to get merged?

[tanberry]

There's what I think is a typo that needs to be fixed... autorization --> authorization

[rissson]

Apart from the typo raised by Tana, all good for me

[sdimovv]

Typo fixed. Let me know if there are more. Otherwise this can be merged.

[rissson]

@BeryJu could you force-merge this?