Hi,
I’m trying to use Pocket ID as an OAuth / OIDC provider for Seafile, but login always fails.
Pocket ID authentication succeeds, I get redirected back to Seafile, but then I only see:
Error, please contact administrator
Normal local login works fine. This is my seahub_settings.py OAuth Config:
ENABLE_OAUTH = True
OAUTH_CREATE_UNKNOWN_USER = True
OAUTH_ACTIVATE_USER_AFTER_CREATION = True
OAUTH_ENABLE_INSECURE_TRANSPORT = False
OAUTH_CLIENT_ID = “<OAUTH_CLIENT_ID>”
OAUTH_CLIENT_SECRET = “<OAUTH_CLIENT_SECRET>”
OAUTH_REDIRECT_URL = “https:// cloud. example. com/oauth/callback/”
OAUTH_PROVIDER_DOMAIN = “auth. example .com”
OAUTH_PROVIDER = “auth. example .com”
OAUTH_AUTHORIZATION_URL = “https:// auth. example .com/authorize”
OAUTH_TOKEN_URL = “https:// auth. example .com/api/oidc/token”
OAUTH_USER_INFO_URL = “https:// auth. example .com/api/oidc/userinfo”
OAUTH_SCOPE = [
“openid”,
“profile”,
“email”,
]
OAUTH_ATTRIBUTE_MAP = {
“id”: (True, “email”),
“name”: (False, “preferred_username”),
“email”: (False, “email”),
“uid”: (True, “aud”),
}
My Service URL and and File Server Root is set accordingly. The Callback URL within Pocket ID is set as per the configuration within seahub_settings.py. I had to put some spaces in the code above because it did not allow me to post links. You can see my Pocket ID Configuration down below:
