OIDC-Setup with Zitadel #1991
sthiel-mpi
started this conversation in
General
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi all,
I am currently trying to setup OIDC for Semaphore using https://zitadel.com/ but I am having issues with accessing claims, especially the email claim which is required.
My current Semaphore configuration:
Using it like this performs correct redirections but ends with the error
One can circumvent that by specifying
within the config. This however shows that really
email
is not existent as the expression after|
is executed.The
{{ .username }}
in this case evaluates to<None>
as it apparently is also not available.Zitadel is configured to Code flow, with a Code response type using basic authentication.
My guess is that I am misunderstanding some of the configuration options available, but as far as I understand https://zitadel.com/docs/apis/openidoauth/claims , the /userinfo endpoint (which is provided to semaphore) should contain the
email
claim if requested, which it is.Did anyone happen to make Semaphore OIDC work with Zitadel or has a few pointers I could try to proceed?
Thanks in advance!
On a sidenote: It seems that also
preferred_username
is unavailable as I always end up with a random username andAnonymous
as display name, although setting thename_claim
andname
topreferred_username
. This might be connected but is not my main concern.Beta Was this translation helpful? Give feedback.
All reactions