New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feature: Load oauth_connect.json and oauth_login.json from disk if the files exist #942
Comments
That's one way to do it but I'd rather make the url templatable with I am also considering storing those oauth endpoints in the database such that each workspace can specialize its oauth. |
Another option might be to support openid-configuration endpoints within For example: |
That would be very powerful indeed. I'm thinking it could be an openid.json/txt file or a table (workspace_id, endpoint) that contains all the .well-known endpoints as a list. I will look into it, thanks for the pointers! |
@unreality Added the ability to add your own custom idP provider in oauth.json as documented in: https://github.com/windmill-labs/windmill#oauth-for-self-hosting-very-optional Lmk if that is sufficient for your needs |
In ae635a4, the custom IdP is also now listed in the login page |
Hi @rubenfiszel, i tried out the latest
When my client name is I had a quick look through |
@unreality on latest commit, you would just need to provide the proper userinfo_url as client config and it should work. Sorry for the trouble.
|
Thanks @rubenfiszel that has solved the issue |
In order to easily add new OAuth providers without needing to edit the source, it would be useful if windmill checked if
oauth_login.json
andoauth_connect.json
were present in the local directory first, and use the included src version if they do not exist.Certain OAuth provides (such as AzureAD) require the authorisation and token endpoints to be specific for the tenant, so a generic URL will not be suitable for them.
This seems like the simplest way currently of enabling adding new OAuth endpoints at the moment since the checks can be added to
windmill/backend/windmill-api/src/oauth2.rs
Line 104 in 5cbc87e
oauth.json
already existsThe text was updated successfully, but these errors were encountered: