xima / xima-oauth2-extended
Additional OAuth2 provider + on-the-fly user creation
Installs: 11 466
Dependents: 0
Suggesters: 0
Security: 0
Stars: 3
Watchers: 6
Forks: 3
Open Issues: 6
Type:typo3-cms-extension
Requires
- php: >=8.1
- ext-pdo: *
- league/oauth2-client: >=2.7
- typo3/cms-core: ^11.0 || ^12.0
- waldhacker/typo3-oauth2-client: >=2.1.1 || dev-feature/v12-compatibility-1
Requires (Dev)
- dev-main
- v13.x-dev
- v2.0.4
- v2.0.3
- v2.0.2
- v2.0.1
- v2.0.0
- v1.1.0
- v1.0.5
- v1.0.4
- v1.0.3
- v1.0.2
- v1.0.1
- v1.0.0
- dev-acceptance-tests
- dev-fix-default-fe-group
- dev-fix-file-name
- dev-slug-fix
- dev-php-8.2
- dev-ext-emconf
- dev-remove-lock-file
- dev-renovate/lock-file-maintenance
- dev-fix-group-resolving
- dev-authentik-resolver
- dev-user-groups
- dev-profile-image
- dev-optional-configuration
- dev-quality-tools
- dev-rename-typo3-extension
This package is auto-updated.
Last update: 2024-10-18 15:59:19 UTC
README
This repository contains additional provider for league/oauth2-client. When installed as TYPO3 extension, it is possible to extend the waldhacker/ext-oauth2-client for on-the-fly user creation.
New resource provider
MicrosoftResourceProviderAuthentikResourceProvider
TYPO3 user creation
To create frontend or backend users from OAuth2 authentication, you can create
your own ResourceResolver by implementing the ResourceResolverInterface and
register it in the extension configuration:
'EXTENSIONS' => [ // your existing configuration of waldhacker/ext-oauth2-client 'oauth2_client' => [ 'providers' => [ 'yourProviderId' => [ 'description' => 'Your provider', 'implementationClassName' => 'Xima\XimaOauth2Extended\ResourceProvider\MicrosoftResourceProvider', ... ], 'secondProviderId' => [ 'description' => 'Another provider' ... ] ] ], 'xima_oauth2_extended' => [ 'oauth2_client_providers' => [ // provider of waldhacker/ext-oauth2-client you want to extend 'yourProviderId' => [ 'resolverClassName' => \Xima\XimaOauth2Extended\ResourceResolver\MicrosoftResourceResolver::class, 'createBackendUser' => true, 'createFrontendUser' => false, 'defaultBackendUsergroup' => '1,3', 'defaultFrontendUsergroup' => '', 'imageStorageBackendIdentifier' => '1:/user_upload/oauth', ], 'secondProviderId' => [ 'resolverClassName' => \Xima\XimaOauth2Extended\ResourceResolver\GenericResolver::class, 'createBackendUser' => true, 'createFrontendUser' => true, 'defaultBackendUsergroup' => '', 'defaultFrontendUsergroup' => '', ], ], ], ]
Available resource resolver
This TYPO3 extension provides a resource resolver to facilitate the creation and updating of TYPO3 users through OAuth2 login. The resource resolver serves as a mapping tool for data retrieval from various OAuth resources. While the default resolver, GenericResolver, covers most OAuth endpoints, each endpoint's unique API for extended user information might require specific handling, leading to variations in features.
Extended resource resolver options
The extension provides customizable options to tailor the resolver's behavior:
FAQ
Register Return-URLs
For the backend login the return url looks like this:
https://domain.de/typo3/login?loginProvider=1616569531&oauth2-provider=yourProviderId&login_status=login&commandLI=attempt
Replace domain.de and yourProviderId with your data!
Login not working
Make sure cookieSameSite is set to lax.
$GLOBALS['TYPO3_CONF_VARS']['BE']['cookieSameSite'] = 'lax'; $GLOBALS['TYPO3_CONF_VARS']['FE']['cookieSameSite'] = 'lax';
Order of login provider
To change the order of provider displayed at the /typo3 login page (OAuth
login over classic username/password), use the following snippet:
$GLOBALS['TYPO3_CONF_VARS']['EXTCONF']['backend']['loginProviders']['1616569531']['sorting'] = 75;
Usage in TYPO3v12
The TYPO3
extension waldhacker/ext-oauth2-client
is not yet ready for v12. However, there is a feature branch that is almost
working - this fork
makes the trick. To use it, adjust your composer.json:
{
"repositories": [
{
"url": "https://github.com/maikschneider/ext-oauth2-client.git",
"type": "git"
}
],
"require": {
"waldhacker/typo3-oauth2-client": "dev-feature/v12-compatibility-1"
}
}