Help implementing SSO

Kwame_Iwegbue · June 15, 2017, 10:32am

Are you able to provide some assistance with adding Single Sign On to my Discourse instance? I have a website with existing clients, and I would like to add a button to my discourse community that allows them log in/register with their existing credentials. Thanks.

codinghorror · June 15, 2017, 11:25am

Follow the official sso topic in the #howto category.

Kwame_Iwegbue1 · June 15, 2017, 12:31pm

Thanks Jeff. I think I may have asked the wrong question. I do not want to replace the existing auth options ie Google, Facebook, Email form, etc. I want to add another button which allows the user also use their existing credentials on my site. Your official SSO topic suggests using OmniAuth:
https://github.com/omniauth/omniauth

My Discourse instance is hosted by you guys, so how would I implement this?

Thanks

blake · June 15, 2017, 2:33pm

Sounds like you will need to use the oauth2 plugin this is only available on the business/enterprise plans. If you are on the standard plan just lets us know and we can upgrade you to business.

Kwame_Iwegbue1 · June 15, 2017, 2:59pm

Ok, please upgrade to the business plan.

blake · June 15, 2017, 3:03pm

What is the name of your site? I can’t seem to find it by your name or email in our system?

Kwame_Iwegbue1 · June 15, 2017, 3:33pm

The site is https://community.gene.chat

blake · June 15, 2017, 4:07pm

Okay you are now on the business plan!

Kwame_Iwegbue1 · June 15, 2017, 4:24pm

Cool. So how do we implement the oath2 plugin?

Kwame

blake · June 15, 2017, 4:51pm

Take a look at this guide:

The plugin has been installed and you can change the settings for it in your admin site settings. You will need to update it with values from your OAuth2 provider.

Kwame_Iwegbue · June 15, 2017, 5:28pm

I still have no idea how to do this. Like I said in my earlier email, the website that I am trying to authenticate with is my existing website (app engine site). It does not have OAath endpoints so how will I implement this. Do I need to build my own OAuth implementation from scratch and add it to my web site!

blake · June 15, 2017, 6:00pm

Yes, your existing app will have to implement OAuth.

Kwame_Iwegbue1 · June 15, 2017, 7:32pm

So my app uses app engine, Python. Do you have any sample code I might use to get started?

mpalmer · June 16, 2017, 1:28am

Sorry, we’re all ruby developers. DuckDuckGo suggests this might be a good place to start:

https://github.com/joestump/python-oauth2

robbyoconnor · June 16, 2017, 2:08am

Uses the discourse-sso Node.js library:

https://github.com/openmrs/openmrs-contrib-id-sso/blob/master/lib/discourse.js

You don’t need OAuth per se.

blake · June 16, 2017, 12:23pm

Yes sso would be easier to setup than oauth2, but also depends what you are trying to accomplish:

If you have sso set up you will lose your other sign in methods via google, twitter, etc.

blake · June 16, 2017, 12:30pm

Also @Kwame_Iwegbue just want to make sure you knew that the business plan is $200/month since I didn’t state that earlier you can see more info on http://discourse.org/buy if the oauth2 plugin doesn’t end up working out just let us know and we can downgrade you back to the $100/month standard plan.

Falco · June 16, 2017, 1:52pm

SSO won’t allow multiple concurrent login methods, that’s the Single in Single Sign On.

Topic		Replies	Views
SSO vs Oauth2 difference? sso docs-welcome	18	9461	November 14, 2019
Discourse SSO with OAuth2 support	5	2397	December 3, 2019
Login to Discourse with custom Oauth2 provider feature oauth2 , completed	24	266547	July 6, 2020
Seeking Slack Login / SSO for Discourse sso	6	3077	March 11, 2021
OAuth2 Authorization and Resource Server extras sso , discourseconnect	11	4879	January 15, 2018

Help implementing SSO

Related Topics