Feature request: NTLM/Kerberos #1979
Comments
|
Well, there is for example this: But I have no way to test it. Someone having Windows Domain could look at it. There is also some SAML packages here: And https://sandstorm.io already has SAML, but I don't know is it possible to bypass requirement to click SAML login button. |
|
I would be happy to test any builds that implement Kerberos auth. I don't even think complete transparency is a requirement. Clicking a Kerberos/SPNEGO/SAML button would get me 90% of the value. We don't have passwords in our environment, so the choice is either Kerberos or maintaining local users/passwords (yuck). |
|
One way to get Kerberos into Wekan would be that some Javascript developer in your company look at adding kerberos package: Auth0 login #1722 is coming to Wekan sometime, there is already some Meteor code in private repo that works with Auth0 and RocketChat, that needs to be cleaned up and added to Wekan. Auth0 has SAML, OAuth2 etc. It could also help if someone would add bounty to this issue similarly like there is already for adding siteminder auth. |
|
After some discussions internally, the SAML route might be better for us. For those of us doing not using sandstorm, is it just a matter of incorporating the SAML packages into the edge branch? |
|
Moved to SAML issue #708 |
It’s really great that you support LDAP for signing in with Windows Domain credentials, but that still requires that the user enter their username and password. It would be amazing if it were possible to add support to hook Wekan up with NTLM and/or Kerberos, thereby allowing the authentication to happen completely transparently from the user’s perspective.
The text was updated successfully, but these errors were encountered: