starred/unifi-voucher-site-glenndehaan-4
1
0
Fork 0
mirror of https://github.com/glenndehaan/unifi-voucher-site.git synced 2026-03-31 06:24:02 -04:00
Code Issues Packages Projects Releases Wiki Activity

Removed 'public' flow from implementation documentation

Browse Source
This commit is contained in:
Glenn de Haan
2024-09-30 19:15:56 +02:00
parent 11873f4879
commit 9e6eece08b
6 changed files with 5 additions and 50 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
.docs/oidc/authentik/README.md
View File

@@ -16,24 +16,15 @@
- **Name**: `unifi-voucher-provider`.
- **Authentication flow**: `default-authentication-flow`.
- **Authorization flow**: `default-provider-authorization-implicit-consent`.
- **Client Type**: Select either `public` or `confidential` based on your needs:
- **Public**: No client secret is required.
- **Confidential**: A client secret will be generated.
5. Set the **Redirect URI** to match your UniFi Voucher Sites callback URL (e.g., `https://<unifi-voucher-url>/callback`).
- **Client Type**: Select `confidential`, A client secret will be generated.
5. Set the **Redirect URI** to match your UniFi Voucher Sites callback URL (e.g., `https://voucher.example.com/callback`).
6. Click **Submit**.
![Create Provider 1](images/create_provider_1.png)
![Create Provider 2](images/create_provider_2.png)
![Create Provider 3](images/create_provider_3.png)
![Create Provider 4](images/create_provider_4.png)
#### For Public Client Method:
- After saving, note down the **Client ID** generated for this provider. Youll need it when configuring your UniFi Voucher Site.
#### For Confidential Client Method:
- After saving, note down the **Client ID** and **Client Secret** generated for this provider. Youll need it when configuring your UniFi Voucher Site.
> After saving, note down the **Client ID** and **Client Secret** generated for this provider. Youll need it when configuring your UniFi Voucher Site.
### Step 3: Create a New Application
@@ -53,17 +44,6 @@
Now, configure your UniFi Voucher Site to use the Authentik client.
### For Public Client Configuration
1. In your UniFi Voucher Site configuration, set `AUTH_OIDC_CLIENT_TYPE` as `public`.
2. Set the `AUTH_OIDC_CLIENT_ID` as configured in Authentik (found in the Authentik provider configuration).
3. Provide the `AUTH_OIDC_ISSUER_BASE_URL` from your Authentik provider.
- You can find this under **Providers > unifi-voucher-provider > OpenID Configuration URL** in Authentik.
4. Provide the `AUTH_OIDC_APP_BASE_URL` from your UniFi Voucher Site instance (e.g., `https://voucher.example.com`).
5. Restart the container after these changes
### For Confidential Client Configuration
1. In your UniFi Voucher Site configuration, set `AUTH_OIDC_CLIENT_TYPE` as `confidential`.
2. Set the `AUTH_OIDC_CLIENT_ID` as configured in Authentik (found in the Authentik provider configuration).
3. Provide the `AUTH_OIDC_CLIENT_SECRET` (found in the Authentik provider configuration).