Daniel Davis edited this page Feb 11, 2019 · 3 revisions

Install for example from:

Make sure you are running at least v2.21

There are two major steps for configuring Wekan to authenticate to Azure AD via OpenID Connect (OIDC)

  1. Register the application with Azure. Make sure you capture the application ID as well as generate a secret key.
  2. Configure the environment variables. This differs slightly by installation type, but make sure you have the following:
  • OAUTH2_ENABLED = true
  • OAUTH2_CLIENT_ID = xxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxx (application GUID captured during app registration)
  • OAUTH2_SECRET = xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx (secret key generated during app registration)
  • OAUTH2_SERVER_URL = https://login.microsoftonline.com/
  • OAUTH2_AUTH_ENDPOINT = /oauth2/v2.0/authorize
  • OAUTH2_USERINFO_ENDPOINT = https://graph.microsoft.com/oidc/userinfo
  • OAUTH2_TOKEN_ENDPOINT = /oauth2/v2.0/token
  • OAUTH2_ID_MAP = email (the claim name you want to map to the unique ID field)
  • OAUTH2_USERNAME_MAP = email (the claim name you want to map to the username field)
  • OAUTH2_FULLNAME_MAP = name (the claim name you want to map to the full name field)
  • OAUTH2_EMAIL_MAP = email (the claim name you want to map to the email field)

I also recommend setting DEBUG = true until you have a working configuration. It helps.

You may also find it useful to look at the following configuration information: https://login.microsoftonline.com/**the-tenant-name-for-your-organization**/v2.0/.well-known/openid-configuration

Some Azure links also at wiki page about moving from Sandstorm to Docker/Snap , and using Docker Swarm:

Wekan

General

Support priorities for new features and bugfixes

  1. Commercial Support and Bounties
  2. Community Support
  3. Debugging

Security

Backup

Repair

Features

Email

Logs and Stats

Migrating

Settings

Download

Webservers

REST API Docs

REST API issue

REST API client code

Webhooks

Case Studies

Development

Issues

Clone this wiki locally
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.
Press h to open a hovercard with more details.