Top Menu

Jump to content
Home
    Modules
      • Projects
      • Activity
      • Work packages
      • Gantt charts
      • Calendars
      • Team planners
      • Boards
      • News
    • Getting started
    • Introduction video
      Welcome to OpenProject Community
      Get a quick overview of project management and team collaboration with OpenProject. You can restart this video from the help menu.
    • Help and support
    • Upgrade to Enterprise edition
    • User guides
    • Videos
    • Shortcuts
    • Community forum
    • Enterprise support
    • Additional resources
    • Data privacy and security policy
    • Digital accessibility (DE)
    • OpenProject website
    • Security alerts / Newsletter
    • OpenProject blog
    • Release notes
    • Report a bug
    • Development roadmap
    • Add and edit translations
    • API documentation
  • Sign in
      Forgot your password?

      or sign in with your existing account

      Google

Side Menu

  • Overview
  • Activity
    Activity
  • Roadmap
  • Work packages
    Work packages
  • Gantt charts
    Gantt charts
  • Calendars
    Calendars
  • Team planners
    Team planners
  • Boards
    Boards
  • News
  • Forums

Content

Plugins
  1. OpenProject
  2. Forums
  3. Plugins
  4. openID Connect: How to pass OpenProject's login screen

openID Connect: How to pass OpenProject's login screen

Added by Andreas Keller almost 6 years ago

First, thanks to the OpenProject Team!  You a doing a great work! 
I use OpenProject's OpenID Connect plugin to autorize on a keycloak server. I would like to remove the step to press the SSO-Button on OpenProject's login screen.  So, if user has a valid ticket, he should be directed in OpenProject without login screen. 

Configuration is:

default:
 openid_connect keycloak:
_     sso: true_
_     host: "auth.beispiel.org"_
_     identifier: "OpenProjectBeispiel"_
_     secret: "secret"_
_     icon: "openid_connect/auth_provider-google.png"_
display_ame: "Beispiel  Authorisation"
     authorization_endpoint: "https://auth.beispiel.org/auth/realms/master/protocol/openid-connect/auth"
     token_endpoint: 'https://auth.beispiel.org/auth/realms/master/protocol/openid-connect/token'
     userinfo_endpoint: 'https://auth.beispiel.org/auth/realms/master/protocol/openid-connect/userinfo'
     end_session_endpoint: 'https://auth.beispieln.org/auth/realms/master/protocol/openid-connect/logout'
     check_session_iframe: 'https://auth.beispiel.org/auth/realms/master/protocol/openid-connect/login-status-iframe.html'
     issuer: 'https://openproject.beispiel.de/login'
     discovery: false


Replies (2)

RE: openID Connect: How to pass OpenProject's login screen - Added by Andreas Keller almost 6 years ago

I forgot: "prompt: login" doesn't work. This para directs a user to keyloak login even with a valid ticket.

RE: openID Connect: How to pass OpenProject's login screen - Added by Andreas Keller almost 6 years ago

Found it!

Added these lines:

disable_password_login: true
 omniauth_direct_login_provider: keycloak

  • (1 - 2/2)
Loading...