Login to Discourse with custom Oauth2 provider

faq-material
faq-material-review

(Michael Brown) #22

SSO means: “I trust «other_site» to rely on ALL of my authentication and rely on it exclusively for this purpose.”

That other site could be anything - it could be your Corporate SSO site, it could be something horrible that trusts users completely, it could be a provider that requires an RSA key with certificates, heck it could even be (another) Discourse.

oauth2 means: “This is a login option for my site” such as Google oauth2.

If what you’re trying to do is this:

image

then you want to do as @sam mentioned and use the plugin (possibly extending it to specifically support your OAuth2 provider.

But if what you’re trying to do is this:

image

Then you need to write “SSO Provider” as Discourse doesn’t care what’s behind it.


SSO vs Oauth2 difference?
(Leo Giovanetti) #23

Super clear. Thanks for taking the time to include diagrams, really neat!

:bowing_man: