Comments (2)
Please note this response was created using generative AI leveraging previously available information from the repository. This information may be helpful however it is our strong recommendation that you carefully consider the information before blindly applying it.
Currently, Authelia supports two primary methods for first-factor authentication: LDAP and file-based (YAML) storage, as detailed in the configuration documentation. For second-factor authentication, Authelia supports methods like TOTP, WebAuthn, and Duo.
Regarding the integration of a custom authentication backend like privacyIDEA for managing second factors, Authelia does not natively support custom authentication backends out of the box. The configuration and system design of Authelia are built around predefined authentication methods, primarily focusing on LDAP and file-based systems for the first factor and the mentioned methods for the second factor.
To integrate privacyIDEA or any other custom authentication system, significant modifications to Authelia's source code would be required. This would involve:
- Understanding Authelia's plugin architecture and how authentication modules are loaded and managed.
- Developing a custom module that can interface with the privacyIDEA API, handling the specific endpoints and responses.
- Ensuring that this module can be configured through Authelia's YAML configuration files, similar to existing authentication backends.
This kind of development would require deep knowledge of Authelia's codebase and possibly contributing to the project directly if you intend for this to be a reusable feature for others. You might consider opening a feature request on Authelia's GitHub repository or checking if there are existing requests for such functionality.
For direct integration without modifying Authelia, you might consider using privacyIDEA to manage all second factors and then using a standard protocol like SAML or OpenID Connect, which Authelia supports as an identity provider, to handle authentication requests. This setup would allow you to centralize second-factor management in privacyIDEA while leveraging Authelia for web application access control.
This comment was generated by Glime.
from authelia.
Interesting. When I read the documentation my understanding is that Authelia does not act as a relying party but as a provider.
https://www.authelia.com/integration/openid-connect/introduction/
If Authelia was able to act as a relying party then we could redirect to another SSO IdP that supports privacyIDEA.
But since this is not the case, my search continues.
from authelia.
Related Issues (20)
- Missing trailing slash can lead to Authelia showing empty window HOT 15
- Server Authz Endpoints invalid configuration example HOT 2
- Using AWS' SES for password reset emails errors on latest version HOT 3
- authelia-v4.38.7-public_html.tar.gz has changed, was this intentional? HOT 4
- HA-Proxy Ingress: *.cluster.local is not under the protected domain HOT 4
- settings: identity verification hangs indefinitely instead of showing error HOT 4
- legacy totp authenticators on an account will still be considered and will block / fail for users when totp is globally disabled HOT 2
- Gmail OAuth client as notifier HOT 4
- Upgrading from 4.37.7 to 4.38.8 got the following error while trying to compose up HOT 3
- "authelia config validate" should return 1 in case of invalid config HOT 1
- Password reset fails with PUID set HOT 2
- Troubles connecting to redis with secret HOT 4
- Authelia tries to get a non-existing 'memberof' attribute from groups in LLDAP backend HOT 1
- Authelia fails to run migrations on empty database HOT 3
- Networks rule not allowed as part of identity_providers.oidc.clients.authorization_policies.policy.rules HOT 2
- SMTP Rate Limiting HOT 2
- Add support for Contour integration with external auth server using gRPC HOT 4
- Synology SSO -- client secret error HOT 2
- After v4.38.9 upgrade LDAP error - Cause: bind failed with error: LDAP Result Code 49 "Invalid Credentials" HOT 15
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from authelia.