Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support for OIDC auth method #489

Open
e-scheer opened this issue Jul 31, 2024 · 2 comments
Open

Support for OIDC auth method #489

e-scheer opened this issue Jul 31, 2024 · 2 comments
Labels
answered

Comments

@e-scheer
Copy link

Hello,

First thank you for this excellent tool; it perfectly suits my needs and meets my current requirements. However, I noticed that there is no mention of support for OpenID Connect (OIDC) in the current documentation or feature set.

Are there any plans to add OIDC support to The Bastion in the near future? If so, is there a tentative timeline for its release? If not, could this be considered for a future enhancement?
@CooperTrooper21
Copy link

+1

Would be the solution I am looking for if support SSO

@speed47
Copy link
Collaborator

speed47 commented Dec 5, 2024

Hello,

The Bastion is handling off authentication of the users to the OpenSSH server and the underlying OS. This means that OIDC will work as long as your OpenSSH and OS config support it.

On Linux systems, a probably good candidate would be a PAM module, as sshd supports it. I haven't tried it personally, but a quick search shows that this kind of module exists, for example here :
https://github.com/salesforce/pam_oidc

This would then just be a matter of PAM config to make it work. If you try it, let men know, maybe we can include some details in the documentation.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
answered
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@speed47 @CooperTrooper21 @e-scheer