让你的Discourse支持作为 Oauth2/OIDC 的Provider

Plugin Extras
1
:information_source: Summary Oauth2/OIDC Provider. User can create them own apps.
:hammer_and_wrench: Download Link https://vvpp.cc/s/GPmCV

Features

我们知道,Discourse官方并没有使用Discourse作为 Oauth2/OIDC 的 Provider 的解决方案。

为了能更好的实现服务,也为了让大家能把更多的创意带入到NL中,NL在 Parkour-Vienna/distrust: Use discourse as an OIDC (OAuth 2.0) provider 的基础上,实现了一版用户可以自己申请应用的 Oauth2/OIDC Provider.

Configuration

用户相关数据我使用了Mysql存储,所以具体的食用方法是,先安装Mysql/MariaDB,执行Sql脚本建库;然后配置 distrust.yml,设置数据库相关内容,然后执行distrust genkey,生成对应的rsa key;再到Discourse后台创建一个discourse connect provider,把相关信息写进来。

然后执行

chmod _+x distrust
./distrust

访问你的 IP:3000/apps 就可以看到应用界面啦。

Demo

The image shows a user interface for an Open Authorization 2.0 (OATH2) app dashboard with options to create a new application. (Captioned by AI)
The image shows a user interface for an Open Authorization 2.0 (OATH2) app dashboard with options to create a new application. (Captioned by AI)1026×790 23.7 KB

A screenshot of the OAuth2 application creation form with fields for application name, description, redirect URLs, allowed groups, and denied groups. (Captioned by AI)
A screenshot of the OAuth2 application creation form with fields for application name, description, redirect URLs, allowed groups, and denied groups. (Captioned by AI)1155×1165 44.4 KB

The image shows a successful OAuth2 application creation page with a warning to save the client secret securely. (Captioned by AI)
The image shows a successful OAuth2 application creation page with a warning to save the client secret securely. (Captioned by AI)1155×1165 51.7 KB

This image shows a screenshot of a software application interface displaying OAuth2 applications with a single active application named 'Test', along with its client ID, status, and creation date. (Captioned by AI)
This image shows a screenshot of a software application interface displaying OAuth2 applications with a single active application named 'Test', along with its client ID, status, and creation date. (Captioned by AI)1155×1165 30.4 KB

When user use Oauth2/OIDC login.

This image shows an authorization screen where the application named 'frenxodeloc' is requesting to access the user's profile and Discord group memberships via OpenID Connect. (Captioned by AI)
This image shows an authorization screen where the application named 'frenxodeloc' is requesting to access the user's profile and Discord group memberships via OpenID Connect. (Captioned by AI)1155×1165 39.5 KB

1 Like
2

This seems to be the piece I was looking for but I’m not technical, so I will patiently wait until someone looks into it :slight_smile:

I’m sharing the OP translated to english with DeepL.