Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Is it possible to choose default auth source? #7633

Closed
5 tasks
andloh opened this issue Jul 26, 2019 · 11 comments · Fixed by #32687
Closed
5 tasks

Is it possible to choose default auth source? #7633

andloh opened this issue Jul 26, 2019 · 11 comments · Fixed by #32687
Labels
issue/confirmed Issue has been reviewed and confirmed to be present or accepted to be implemented type/proposal The new feature has not been accepted yet but needs to be discussed first.

Comments

@andloh
Copy link

andloh commented Jul 26, 2019

  • Gitea version (or commit ref): 1.10.0+dev-60-gc5f9c0418
  • Git version:
  • Operating system: linux
  • Database (use [x]):
    • [ x] PostgreSQL
    • MySQL
    • MSSQL
    • SQLite
  • Can you reproduce the bug at https://try.gitea.io:
    • Yes (provide example URL)
    • No
    • [x ] Not relevant
@lafriks
Copy link
Member

lafriks commented Jul 27, 2019

How do you mean default? They all work at the same time

@andloh
Copy link
Author

andloh commented Jul 27, 2019

Thanks for answering
More like if its possible to disable some of the auth sources. E.g so that users can just interact with the oidc auth, and not the default gitea one.

@stale
Copy link

stale bot commented Sep 25, 2019

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs during the next 2 weeks. Thank you for your contributions.

@stale stale bot added the issue/stale label Sep 25, 2019
@lunny
Copy link
Member

lunny commented Sep 30, 2019

@andloh Gitea support LDAP/mail/OAuth2 and etc. Is that what you mean?

@stale stale bot removed the issue/stale label Sep 30, 2019
@andloh
Copy link
Author

andloh commented Sep 30, 2019

No. The auth support is great. But i would like to disable some of them. So that users only have one auth source to interact with on the login page

@stale
Copy link

stale bot commented Nov 29, 2019

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs during the next 2 weeks. Thank you for your contributions.

@stale stale bot added the issue/stale label Nov 29, 2019
@lunny lunny added type/proposal The new feature has not been accepted yet but needs to be discussed first. issue/confirmed Issue has been reviewed and confirmed to be present or accepted to be implemented labels Dec 13, 2019
@stale stale bot removed the issue/stale label Dec 13, 2019
@army1349
Copy link

Once role mapping is possible option to force OAuth2 auth source would be nice.

@ailox ailox mentioned this issue Feb 21, 2021
Closed
6 tasks
@ailox
Copy link

ailox commented Feb 21, 2021

In addition to what @army1349 said, OIDC/OAuth2 Autoregistration (worked on in #5123) would also be useful to make login for existing OIDC accounts seamless.

@tacerus

This comment has been minimized.

Sign in to view
@tacerus
Copy link

tacerus commented Sep 6, 2021
edited
Loading

I worked around this by adding a redirect to Gitea's oauth URL in my webserver (nginx) in order to directly forward users to our OIDC/SSO logon page upon clicking "Sign in" in Gitea - maybe it helps others:

location                /user/login {
return                  302 https://git.com.de/user/oauth2/LibertaCasaSSO;
}

The last bit is the name of the authentication provider that was set in Gitea - best to just visit the Gitea sign-in page regularly, right-clicking on the SSO/OIDC button, and selecting the browsers "Copy Link" option.

Note of course that this will make local logins impossible.

@wxiaoguang wxiaoguang mentioned this issue May 20, 2023
Open
@wxiaoguang wxiaoguang mentioned this issue Dec 1, 2024
Merged
@wxiaoguang
Copy link
Contributor

Thanks for answering More like if its possible to disable some of the auth sources. E.g so that users can just interact with the oidc auth, and not the default gitea one.

The same request as #13606, will be implemented by #32687

wxiaoguang added a commit that referenced this issue Dec 1, 2024
@wxiaoguang
Allow to disable the password-based login (sign-in) form (#32687)
def13ec 
Usually enterprise/organization users would like to only allow OAuth2
login.

This PR adds a new config option to disable the password-based login
form. It is a simple and clear approach and won't block the future
login-system refactoring works.

Fix a TODO in #24821

Replace  #21851

Close #7633 , close #13606
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
issue/confirmed Issue has been reviewed and confirmed to be present or accepted to be implemented type/proposal The new feature has not been accepted yet but needs to be discussed first.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Allow to disable the password-based login (sign-in) form wxiaoguang/gitea
7 participants
@lunny @lafriks @wxiaoguang @tacerus @andloh @army1349 @ailox