pmauduit
commented
3 months ago I don't know if this is due to the CAS6.6 update, but I can't connect using using the login workflow described above.
Closed pmauduit closed 1 day ago
pmauduit
commented
3 months ago I don't know if this is due to the CAS6.6 update, but I can't connect using using the login workflow described above.
pmauduit
commented
3 months ago switching back to oauth2.0 instead of oidc (hence the force-push). OIDC seems to have some extra checks which makes it more difficult to use as a protocol for external authentication here (endpoints via https, ...).
pmauduit
commented
2 months ago Wondering if this should go into georchestra/docker instead, or elsewhere ; we had a discussion on having some pre-usable docker composition to "unitary" test the georchestra components without having to launch the whole docker composition.
f-necas
commented
1 day ago pmauduit
commented
1 day ago https://github.com/georchestra/sample-docker-composition/tree/main/gateway/oidc Could work
I think keeping this one which does plain oauth2 could be interesting, but maybe not in this repository (but in the other one).
pmauduit
commented
1 day ago I think this can be closed, in favor of having its content copied into the previously mentioned repository.
This introduces a new docker composition, which integrates a RabbitMQ & a geOrchestra CAS configured to be hit via the OpenID connect protocol (OIDC).
CAS is configured to use a new LDAP, based on the geOrchestra LDAP, but where every
test*users are removed, and a newtestoauth2user (password identical to the login) is inserted. When clicking on the login button in the header, the user has the possibility to use the regulartest*users, then the gateway will directly perform the authentication on theldapservice. A link is made available below the login form to selectcas-oauth2instead. Clicking on it will redirect to the CAS, where the only available user will betestoauth2(from theldap2service).