XCP-ng
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    OIDC not redirecting back to XO

    Scheduled Pinned Locked Moved Xen Orchestra
    22 Posts 4 Posters 3.6k Views 4 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • maxcernyM Offline
      maxcerny @olivierlambert
      last edited by

      @olivierlambert could you point me in the keycloak configuration direction?

      1 Reply Last reply Reply Quote 0
      • olivierlambertO Offline
        olivierlambert Vates 🪐 Co-Founder CEO
        last edited by

        See https://xen-orchestra.com/blog/xen-orchestra-5-80/

        1 Reply Last reply Reply Quote 0
        • julien-fJ Offline
          julien-f Vates 🪐 Co-Founder XO Team @maxcerny
          last edited by

          @maxcerny I believe the username field is incorrect, it should be one of displayName, username or email).

          Make sure your plugin is up-to-date because it is documented.

          17e7fc12-7b56-4d78-8fdf-42906dc685f0-image.png

          maxcernyM 1 Reply Last reply Reply Quote 0
          • maxcernyM Offline
            maxcerny @julien-f
            last edited by

            @julien-f tried it, no dice

            Also according to the authelia docs: https://www.authelia.com/integration/openid-connect/introduction/#profile

            the claim is preferred_username

            julien-fJ 1 Reply Last reply Reply Quote 0
            • julien-fJ Offline
              julien-f Vates 🪐 Co-Founder XO Team @maxcerny
              last edited by

              @maxcerny username is preferred_username in XO.

              We weren't explicitly using the profile scope, please test the oidc-scope-profile branch.

              maxcernyM 2 Replies Last reply Reply Quote 0
              • maxcernyM Offline
                maxcerny @julien-f
                last edited by

                @julien-f yes, this branch works.
                guess it was a scoping issue then.

                When about can I expect an update to the master branch? I'm currently running xo in docker and don't really want to glue together different plugin versions.

                1 Reply Last reply Reply Quote 0
                • maxcernyM Offline
                  maxcerny @julien-f
                  last edited by

                  @julien-f just a clarification, it works with username, not preferred username

                  julien-fJ 1 Reply Last reply Reply Quote 0
                  • julien-fJ Offline
                    julien-f Vates 🪐 Co-Founder XO Team @maxcerny
                    last edited by

                    @maxcerny I've made some changes to make scopes configurable, if you could test it to make sure it works, that would be great. (same branch, commit da14bab)

                    julien-fJ 1 Reply Last reply Reply Quote 0
                    • julien-fJ Offline
                      julien-f Vates 🪐 Co-Founder XO Team @julien-f
                      last edited by

                      @maxcerny Have you been able to test the latest version?

                      julien-fJ 1 Reply Last reply Reply Quote 0
                      • julien-fJ Offline
                        julien-f Vates 🪐 Co-Founder XO Team @julien-f
                        last edited by

                        The fix is now merged on master and will be part of the next release.

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post