Single Sign On

[MichaelBarth]

Hi,
I really try hard to realize a single sign on solution using the external app but I don‘t get it.

I want to authorize the user automatically by the nextcloud credentals but how should I?
Is there a workaround?

OAuth2? But how? I need the uid to check, if the user is logged in, but the uid is unsafe in the url parameter, becaus you can change it manually.

Pleas help! I am stuck in this issue and I need it for a learning platform for my school using the nextcloud.

Thank you so much for helping!

Sincerely

Michael

[mkrumbholz]

You should look maybe into "Keycloak", "oauth2-proxy"(if the external app does not support oauth2 or openid) and the Nextcloud app "Social Login".

[MichaelBarth]

Thank you for helping but unfortunately I don't know how to "oauth2" ...

For me it would be perfekt just to have an additional hash sent together width the URL - params, so I can check, if the URL - Data is not modified. So what I wish is:

• the possibility to add an password for a site, that is used to create a hash, wich is additionally sent with the URL-params
• an API-callback (mycloud/external/validateURL/password) I can use to check, if the URL-parameters are right.

I think, some people say, that ist not save enough. But it prevents simply modifying the URL-params, and that is enough for me

[github-actions]

Hello there,
Thank you so much for taking the time and effort to create a pull request to our Nextcloud project.

We hope that the reviewing process is going smooth and is helpful for you. We want to ensure your pull request is reviewed to your satisfaction. If you have a moment, we would appreciate your feedback on your experience with our community management team.

Your feedback is valuable to us as we continuously strive to improve our community developer experience. Please take a moment to complete our short survey by clicking on the following link: https://cloud.nextcloud.com/apps/forms/s/i9Ago4EQRZ7TWxjfmeEpPkf6

Thank you for contributing to Nextcloud and we hope to hear from you soon!

[provokateurin]

@MichaelBarth did you have any luck getting this to work? To me this idea sounds like it is out of scope for this app for now, but I can see that something like this makes sense. If you got it working, could you outline the steps needed for this so that other people can follow them?