Issue 1: Add SSO to roadmap

Issue 1

Title: Add SSO to roadmap
Priority: feature
Status: chatting
Nosy list: adam
Assigned to: adam
Keywords

Created on 2025-03-02.13:15:24 by adam, last changed 2 weeks ago by adam.

Messages

msg6 (view)

Author: adam

Date: 2025-03-18.11:15:17

also: https://wiki.roundup-tracker.org/OauthAuthentication

I think there are two main ways: * simple but possibly insecure; * replace login form in roadmap with login button redirecting to SSO * add hook on SSO register to add user to roadmap and dummy password generated/stored in vault * pass user:specificPassword in authorization header to roadmap * difficult: * integrate OIDC into login procedure in roadmap (cf. wiki link)

maybe it can be done in steps: first the simple step, then pass token to roadmap and check OIDC claims in login procedure (still needs users created in hook from SSO, with no password this time and safeguard not to check local password)

msg1 (view)

Author: adam

Date: 2025-03-02.13:15:24

* https://wiki.roundup-tracker.org/ShibbolethLogin
* https://wiki.roundup-tracker.org/LDAPLogin
* https://wiki.roundup-tracker.org/CustomisationExamples #Security

History
Date	User	Action	Args
2025-03-18 11:15:17	adam	set	messages: + msg6
2025-03-02 13:15:24	adam	create