Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Sign up
Appearance settings

I need to use onelogin for oauth2 authentication, can it be supported? #1215

Unanswered
jessyin2 asked this question in Q&A
Discussion options

Issue submitter TODO list

  • I've searched for an already existing issues here
  • I'm running a supported version of the application which is listed here and the feature is not present there

Is your proposal related to a problem?

No response

Describe the feature you're interested in

I need to use onelogin for oauth2 authentication, can it be supported?

Describe alternatives you've considered

No response

Version you're running

56fa824

Additional context

No response
You must be logged in to vote

Replies: 2 comments 2 replies

Comment options

Hi jessyin2! 👋

Welcome, and thank you for opening your first issue in the repo!

Please wait for triaging by our maintainers.

As development is carried out in our spare time, you can support us by sponsoring our activities or even funding the development of specific issues.
Sponsorship link

If you plan to raise a PR for this issue, please take a look at our contributing guide.
You must be logged in to vote
0 replies
Comment options

As far as I can tell, OneLogin does support OAuth2 authentication (see: https://developers.onelogin.com/api-docs/1/oauth20-tokens/generate-tokens-2). So, you should be able to configure it fairly easily to handle authentication through OAuth2.

Regarding roles and RBAC, this is a more complex topic and would require a deeper investigation into how OneLogin exposes role information. If you happen to find any relevant details, please don't hesitate to share them with the community.
You must be logged in to vote
2 replies
Comment options

I can use a generic version of OAuth2 for authentication, but I cannot use the RBAC functionality.
Comment options 

auth:
 type: OAUTH2
 oauth2:
 client:
 oauth:
 provider: onelogin
 clientId: xxxxx
 clientSecret: xxxx
 scope: [ 'openid', 'groups' ]
 client-name: oauth
 issuer-uri: xxxxx
 redirect-uri: xxxxxx
 user-name-attribute: email
 custom-params:
 type: auth
 roles-field: groups
#rbac:
# roles:
# - name: "admin" # role name
# clusters:
# - test-trade-msk-cluster
# subjects:
# - provider: oauth
# type: role
# value: admin
# regex: false
# permissions:
# - resource: applicationconfig
# actions: all
#
# - resource: clusterconfig
# actions: all
#
# - resource: topic
# value: ".*"
# actions: all
#
# - resource: consumer
# value: ".*"
# actions: all
#
# - resource: schema
# value: ".*"
# actions: all
#
# - resource: connect
# value: ".*"
# actions: all
#
# - resource: ksql
# actions: all
#
# - resource: acl
# actions: [ view ]
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Category
Q&A
Labels
None yet
Converted from issue

This discussion was converted from issue #1211 on July 24, 2025 12:22.

AltStyle によって変換されたページ (->オリジナル) /