Skip to content

joshp23/YOURLS-OIDC

master
Switch branches/tags
Code

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 
 
 
 
 
 
 

YOURLS-OIDC

OpenID Connect Authentication for YOURLS

This plugin enables authentication against a generic OpenID Connect server in YOURLS.

Features

  • Respects YOURLS auth flow
  • Respects YOURLS hard-coded logins, if desired
  • Can link OpenID Connect accounts to existing YOURLS accounts
  • Sets user to sub, sets display name to preferred_username
  • Single Sign Out: signing out of YOURLS signs off OIDC server.

Requirements

Installation

  1. Download this repo and extract the oidc folder into YOURLS/user/plugins/
  2. cd to the directory you just created
  3. Run composer install in that directory to fetch the OIDC library
  4. Define OIDC server parameters (see below)
  5. configure OIDC, see below.
  6. Enable in Admin

Configuration

Config: user/config.php file.

// oidc server
define( 'OIDC_BASE_URL', 'https://keycloak.example.com/auth/realms/master/' );
define( 'OIDC_CLIENT_NAME', 'YOURLS' );
define( 'OIDC_CLIENT_SECRET', 'YOUR-SUPER-SECRET-HASH' );
// Option 1: link OIDC users to local YOURLS users
$oidc_profiles = array( 
	'YOURLS_UNAME' => 'sub attribute from OIDC provider',
);
// Option 2, all users on OIDC platform have YOURLS accounts. uses 'preferred_username' attribute
define( 'OIDC_BYPASS_YOURLS_AUTH', true );

In Development

  • Tight integration with AuthMgrPlus
    • Group and attribute assignment
  • User panel in admin for linking to existing accounts with the push of a button

Tips

Dogecoin: DARhgg9q3HAWYZuN95DKnFonADrSWUimy3

License

Copyright 2019 Joshua Panter