Skip to content
Snippets Groups Projects
Commit 521f28a1 authored by Christian Elberfeld's avatar Christian Elberfeld
Browse files

Nextcloud Openid configuration

parent 35328f17
No related branches found
No related tags found
No related merge requests found
# Nextcloud with OIDC Authentication via uffd
Uffd Reference: https://git.cccv.de/uffd
## Remarks and limitations
* Only the numeric user id from uffd can be used in nextcloud.
* The admin group in nextcloud is added/removed if the group nextcloud_admin is set in uffd
* Groups must be created manually, groups are assigned and revoked on login
## Setup in Nextcloud
Nextcloud App: OpenID Connect Login (Category: Integration)
The App must be installed manually with the initial admin User or via occ command.
Configuration ist provided in the config file 'oidc.config.php'
https://apps.nextcloud.com/apps/oidc_login
https://github.com/pulsejet/nextcloud-oidc-login
## Setup in uffd
Create Groups:
- nextcloud_access: General Access to Nextcloud
- nextcloud_admin: This Group will be Mapped to the Group admin in Nextcloud
Create a Service / OAuth Client:
Only Users with goup nextcloud_access can access Nextcloud
Client-ID: nextcloud
Client-Secret: from file nextcloud_oidc_secret on the server
Redirect-URIs:
* https://<nextcloud Server Url>/index.php/apps/oidc_login/oidc
* https://<nextcloud Server Url>/apps/oidc_login/oidc
...@@ -35,7 +35,7 @@ $CONFIG = array ( ...@@ -35,7 +35,7 @@ $CONFIG = array (
// Attribute map for OIDC response. // Attribute map for OIDC response.
'oidc_login_attributes' => array ( 'oidc_login_attributes' => array (
'id' => 'sub', 'id' => 'preferred_username',
'name' => 'name', 'name' => 'name',
'mail' => 'email', 'mail' => 'email',
'groups' => 'groups', 'groups' => 'groups',
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment