Howdy, it has been a while - work has been busy.
Have been having a play with my home set up and for fun looking at using authentik as the SSO for my home lab. I am learning on the fly here so probably have made a silly mistake
Was pleasantly surprised that they support Node Red oauth2
Have followed the instructions found here
installed the passport-openidconnect package and updated settings.js
with
adminAuth: {
type:"strategy",
strategy: {
name: "openidconnect",
label: 'Sign in with authentik',
icon:"fa-cloud",
strategy: require("passport-openidconnect").Strategy,
options: {
issuer: 'https://authentik.xxxx.com/application/o/nodered-slug/',
authorizationURL: 'https://authentik.xxxx.com/application/o/authorize/',
tokenURL: 'https://authentik.xxxxx.com/application/o/token/',
userInfoURL: 'https://authentik.xxxx.com/application/o/userinfo/',
clientID: 'clientIsRedacted',
clientSecret: 'clientSecretIsRedacted',
callbackURL: 'https://nr.xxxx.com/auth/strategy/callback/',
scope: ['email', 'profile', 'openid'],
proxy: true,
verify: function(issuer, profile, done) {
done(null, profile)
}
}
},
users: function(user) {
return Promise.resolve({ username: user, permissions: "*" });
}
},
The authentication appears to work (logs form authentik ) however getting a ENOTFOUD on the return to node red. There is nothing in any logs
A hope that someone may have see something similar