Integrate an OAuth2 consumer

[tboerger]

To keep the barrier of Gitea as small as possible we should integrate an OAuth2 consumer. That way new users can register with just a few clicks and can reuse there already elsewhere existing accounts. A good library for that can be https://github.com/markbates/goth.

---

Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.

[bkcsoft]

oauth for searchabilty

( GitHub fix your search-engine FFS 😒 )

[willemvd]

This would mean some area in the admin panel/app.ini to setup OAuth2 client_id, client_secret and a provider based on the goth provider list

Do we want to support non-existing goth providers (like MS ADFS/Office365) and let users enter a custom token & authorize url which we then can use to either create a new goth provider (not sure how) or use the golang.org/x/oauth2 package?

[tboerger]

I think on the first step we will support the goth providers, but on another step we should also try to support more providers.

[lunny]

So this has been resolved by #679 ?

[willemvd]

it will be broken in to multiple PR's, first part is in #679 , but I don't think we need this as reference for the other PR's

[lunny]

So let's close this.

[Lichtjaeger]

Nice work. But I would like to use Gitea on our intranet with our own OAuth2 provider (self-made with NodeJS).

I hope, this is planned for the next releases.

[laf0rge]

I also have several use cases (even on the public inthernet) where I'd want to be able to provide my own OAuth provider. Particularly privacy-sensitive users would not typically like to share too much data with the large Oauth "providers". So I think it's quite desirable for every entity/organization to run their own OAuth provider and not just rely on the big OAuth providers.

[lunny]

I think you mean a customize OAuth2 config UI? @Lichtjaeger @laforge Maybe we could create another issue to discuss that.

[bryanpedini]

I think you mean a customize OAuth2 config UI? @Lichtjaeger @laforge Maybe we could create another issue to discuss that.

Just crossing around open / solved issues of Gitea to better understand the underlying golang structure...
Immediately noticed you menti@ned the wrong user, @lunny, that 'o' was a zero..

[lunny]

@bryanpedini You are right. Sorry, @laf0rge

[Lichtjaeger]

@lunny @laf0rge
This feature request has long been fulfilled. I'm using Gitea with our own auth server successfully for over a year now.