jessikitty/drop
1
0
Fork 0
Code Issues Pull Requests 2 Actions Packages Projects Releases Wiki Activity

basic OIDC guide

Browse Source
This commit is contained in:
Huskydog9988
2026-02-10 21:47:43 -05:00
parent d5ae4181aa
commit 70c30ef589
3 changed files with 40 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
docs/astro.config.mjs
+1
View File
@@ -59,6 +59,7 @@ export default defineConfig({
{ slug: "admin/guides/creating-library" },
{ slug: "admin/guides/import-game" },
{ slug: "admin/guides/import-version" },
{ slug: "admin/guides/setting-up-oidc" },
],
},
{
docs/src/content/docs/admin/authentication/oidc.md
+1 -1
View File
@@ -27,7 +27,7 @@ And then, you must configure **either**:
A unprotected endpoint that returns a OIDC well-known JSON. Fetched on startup.
For example if you used authentik, your OIDC well-known endpoint would be: `https://authentik.company/application/o/<slug>/.well-known/openid-configuration`.
For example if you used authentik, your OIDC well-known endpoint would be: `https://authentik.tld/application/o/<slug>/.well-known/openid-configuration`.
---
docs/src/content/docs/admin/guides/setting-up-oidc.mdx
+38
View File
@@ -0,0 +1,38 @@
---
title: Setting up OIDC
---
## Authentik
For this guide, `drop.tld` is used as a placeholder for your Drop instance's domain. Make sure to replace it with your actual domain.
### In Authentik
1. Go to the admin dashboard
1. In the applications section, click Create with Provider
Set any name and slug you want
1. Select OpenID Connect as the provider type
1. Configure the provider
- Copy the client ID, and secret, you'll need them for Drop
- Set the redirect as `Strict` and the URL to `https://drop.tld/api/v1/auth/odic/callback`
- Set the logout URL to `https://drop.tld/api/v1/auth/odic/logout`
- Make sure to set the logout URL as a `back-channel` logout in the dropdown
1. Configure everything else as you see fit
### For Drop
:::note
Make sure to replace the client ID, secret, and well-known url with your actual values. You can find the well-known URL in the provider's configuration page in Authentik.
:::
For drop, the docker compose configuration would look like this:
```yaml
services:
drop:
environment:
- OIDC_CLIENT_ID=authentik-client-id
- OIDC_CLIENT_SECRET=authentik-client-secret
- OIDC_ADMIN_GROUP=admin-group-name
- OIDC_WELLKNOWN=https://authentik.tld/application/o/<slug>/.well-known/openid-configuration
```