mirror of https://github.com/opencloud-eu/opencloud.git synced 2025-12-16 17:45:39 -06:00

Files

Christian Richter 0372869b8b refactor remaining code from urfave/cli

Signed-off-by: Christian Richter <c.richter@opencloud.eu>

2025-12-15 16:40:27 +01:00

assets

…

cmd/idp

change module name

2025-01-13 09:58:18 +01:00

i18n

…

pkg

refactor remaining code from urfave/cli

2025-12-15 16:40:27 +01:00

public

feat: support svg as icon

2025-03-31 12:04:48 +02:00

scripts

…

src

fix: use valid autocomplete values (axe autocomplete-valid)

2025-09-30 12:08:27 +02:00

ui_config

Fix lico idp doesn't load opencloud font anymore (#1153 )

2025-07-01 11:03:08 +02:00

.env

…

.eslintignore

…

.gitignore

gitignore *.tsbuildinfo

2025-01-16 14:06:12 +01:00

.npmrc

…

idp.go

…

license-checker-clarifications.json

Update license-checker config for "i18next-conv@15.1.1"

2025-05-20 10:21:17 +02:00

Makefile

Makefile: fix idp dependencies

2025-04-22 17:07:55 +02:00

package.json

build(deps-dev): bump jest from 29.7.0 to 30.0.0 in /services/idp

2025-06-11 06:22:32 +00:00

pnpm-lock.yaml

build(deps-dev): bump jest from 29.7.0 to 30.0.0 in /services/idp

2025-06-11 06:22:32 +00:00

README.md

fix: correct README.md files which contain broken or missing links (#1854 )

2025-11-14 11:22:30 +01:00

tsconfig.json

…

README.md

IDP

This service provides a builtin minimal OpenID Connect provider based on LibreGraph Connect (lico) for OpenCloud.

It is mainly targeted at smaller installations. For larger setups it is recommended to replace IDP with an external OpenID Connect Provider.

By default, it is configured to use the OpenCloud IDM service as its LDAP backend for looking up and authenticating users. Other backends like an external LDAP server can be configured via a set of enviroment variables.

Note that translations provided by the IDP service are not maintained via OpenCloud but part of the embedded LibreGraph Connect Identifier package.

Configuration

Custom Clients

By default the idp service generates a OIDC client configuration suitable for using OpenCloud with the standard client applications (Web, Desktop, iOS and Android). If you need to configure additional client it is possible to inject a custom configuration via yaml. This can be done by adding a section clients to the idp section of the main configuration file (opencloud.yaml). This section needs to contain configuration for all clients (including the standard clients).

For example if you want to add a (public) client for use with the oidc-agent you would need to add this snippet to the idp section in opencloud.yaml.

clients:
- id: web
  name: OpenCloud Web App
  trusted: true
  secret: ""
  redirect_uris:
  - https://opencloud.k8s:9200/
  - https://opencloud.k8s:9200/oidc-callback.html
  - https://opencloud.k8s:9200/oidc-silent-redirect.html
  post_logout_redirect_uris: []
  origins:
  - https://opencloud.k8s:9200
  application_type: ""
- id: OpenCloudDesktop
  name: OpenCloud Desktop Client
  trusted: false
  secret: ""
  redirect_uris:
  - http://127.0.0.1
  - http://localhost
  post_logout_redirect_uris: []
  origins: []
  application_type: native
- id: OpenCloudAndroid
  name: OpenCloud Android App
  trusted: false
  secret: ""
  redirect_uris:
  - oc://android.opencloud.eu
  post_logout_redirect_uris:
  - oc://android.opencloud.eu
  origins: []
  application_type: native
- id: OpenCloudIOS
  name: OpenCloud iOS App
  trusted: false
  secret: ""
  redirect_uris:
  - oc://ios.opencloud.eu
  post_logout_redirect_uris:
  - oc://ios.opencloud.eu
  origins: []
  application_type: native
- id: oidc-agent
  name: OIDC Agent
  trusted: false
  secret: ""
  redirect_uris:
  - http://127.0.0.1
  - http://localhost
  post_logout_redirect_uris: []
  origins: []
  application_type: native