:: Version 3.2.0 ::

Easy configuration of Authentication with OpenID

Features

This extension simplifies the configuration of an OpenID provider, which can handle the authentication for iTop.

  • Configure your external provider (ID/SECRET)
  • Enable creation of iTop account (user and contact) as they connect for the first time.

Usage

Current extension proposes a screen for external authentication delegation.

Some configuration settings are not proposed on this screen.
For those advanced setting, you will have to edit the Configuration file.
Booth modes to edit this configuration are compatible and no settings will be lost

Configuration page is available to iTop Administrators and Users having write access on the following resource: RessourceHybridAuthMenu.

Main screen

When clicking on 'save' button all settings are saved in iTop configuration.

When a specific provider is enabled you can also save immediately the configuration and validate external authentication through selected provider. It consists in successively saving your settings, disconnecting from iTop and trying to reconnect through external provider.

Limitations

Compatible with minimum iTop 3.x

Configuration

By default this new screen is accessible only by Administrators. If you want to give access to other profiles please customize your iTop with something like this:

  <user_rights>
    <profiles>
      <profile id="x" _delta="must_exist">
        <!-- x is a number which must correspond to an existing iTop profile -->
        <groups>
          <group id="RessourceHybridAuthMenu" _delta="define">
            <actions>
              <action id="action:write">allow</action>
            </actions>
          </group>
        </groups>
      </profile>
     <profiles>
  <user_rights>

External provider list

  • By default all available hybridauth/hybridauth lib providers are proposed from below V3.11.0 library

https://hybridauth.github.io/providers.html

  • You can restrict the proposed providers likewise in the iTop configuration
$MyModuleSettings = array(
    'combodo-hybridauth-configuration' => array (
        'ui_proposed_providers' => array (
            0 => 'Google',
            1 => 'MicrosoftGraph',
        ),
    ),
)

  • The drop down list will restrict to the listed providers. but it will also propose any other provider listed in combodo-hybridauth configuration section (cf “My provider” in below example section)

Example

'combodo-hybridauth' => array (
    'debug' => true,
    'default_profile' => 'Portal User',
    'providers' => array (
        'My provider' => array(),
    ),
),

3_2_0/products/hybridauth-configuration.txt · Last modified: 2024/09/10 10:25 by 127.0.0.1
Back to top

Table of Contents

Contact us
Contact us