Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow to use an external OAuth provider to create accounts #3165

Closed
Ash-Crow opened this issue May 20, 2017 · 9 comments
Closed

Allow to use an external OAuth provider to create accounts #3165

Ash-Crow opened this issue May 20, 2017 · 9 comments
Labels
suggestion Feature suggestion

Comments

@Ash-Crow
Copy link

In order to set up a Mastodon instance for an existing community, I would like to restrict account creation to existing users through OAuth, to avoid account usurpation.

For that, I would like to link registration to an OAuth consumer.
@urchinhead
Copy link

When I regist account at another instance, I'd like to use my account of my main used instance. so It's an OAuth provider.

@pierreozoux
Copy link
Contributor

At https://indie.host, we also plan to have a central identity provider, and I'm also missing this functionality.

@pierreozoux
Copy link
Contributor

At https://indie.host, we also plan to have a central identity provider, and I'm also missing this functionality.
We could probably use either:

But for sure, there will be some work needed.

@amandasaurus
Copy link

amandasaurus commented Sep 19, 2018
edited
Loading

I would like this too.

There is https://en.osm.town, an instance for the (english speaking) OpenStreetMap community, and OSM.org provides OAuth for people's OSM accounts. Allowing "sign ups" to en.osm.town using oauth would make new sign ups much easier. "one click mastodon account creation" would be very beneficial.

For en.osm.town, we don't need to require oauth sign ups, merely that it's possible.

@Gargron Gargron added the suggestion Feature suggestion label Oct 20, 2018
@trwnh trwnh mentioned this issue Feb 27, 2019
Open
@LunaSquee
Copy link

Just letting you know there's still demand for this. Thanks :)

@tjormola
Copy link

tjormola commented Sep 6, 2020

Would be much appreciated, thanks :)

@Gargron
Copy link
Member

Gargron commented Sep 7, 2020

Mastodon includes the omniauth gem, through which e.g. CAS and SAML systems are connected. Using omniauth it should be possible to support sign up through any OAuth service.

https://github.com/omniauth/omniauth/wiki

However, I don't see how I could make this any easier to integrate since every service requires some level of customization. It might be as easy as adding a new line in here for some: https://github.com/tootsuite/mastodon/blob/master/config/initializers/omniauth.rb I haven't tried.

@legend813
Copy link

@Gargron In another Thread, saper refered to this topic here. I don't know how to implement your mentioned solution in my selfhosted mastodon instance. I would really appreciate if you could add some instructions.

@ThisIsMissEm
Copy link
Contributor

We now support OIDC through OmniAuth, and also have a OMNIAUTH_ONLY mode which restricts account access/creation to those through your provider. There's also ONE_CLICK_SSO_LOGIN that changes the sign up / login to just a "login with sso" button.

I think this issue can now be closed.

@trwnh trwnh closed this as not planned Won't fix, can't repro, duplicate, stale Aug 1, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
suggestion Feature suggestion
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
10 participants
@amandasaurus @ThisIsMissEm @Gargron @tjormola @urchinhead @Ash-Crow @pierreozoux @LunaSquee @trwnh @legend813