authentication

Authentication

TODO

Disabling Authentication

Authentication (and authorization) can be fully disabled through environment variables in backend and frontend:

Disable authentication in backend

Set the following environment variables:

Authentication__debugAllowAll=true
Authorization__debugAllowAll=true

Disable authentication in frontend

Set the following environment variable:

REACT_APP_DISABLE_AUTH=true

After disabling authentication and authorization, omnikeeper works without an IDP, such as Keycloak. Note that all user interactions (reads, writes) will be attributed to the same user "anonymous".

Authentication using Keycloak

TODO

Authentication using Authentik

TODO

Scope Mapping Example

import random
import uuid

# generate a consistent UUID from the user's uid
rnd = random.Random()
rnd.seed(user.uid)
user_uuid = uuid.UUID(int=rnd.getrandbits(128), version=4)

return {
  "id": user_uuid,
  "resource_access": {
    "omnikeeper": {
      "roles": ["__ok_superuser"] # TODO
    }
  }
}

Home
ansible
attributes
authentication
authorization
build and packaging
comparisons
compute layers
configuration
- application configuration
- configuration layers
data ingest
datamodel
eazy bi
generators
graphql api
gridview
issues
layers
meta
- code of conduct
monitoring
plugins
traits

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

authentication

Authentication

Disabling Authentication

Disable authentication in backend

Disable authentication in frontend

Authentication using Keycloak

Authentication using Authentik

Scope Mapping Example

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Clone this wiki locally