SSO Authentik + forward auth for clients possible

Hello,
It is possible to force any client to authenticate through Authentik?
It works with the web interface but not for the clients.
How to always force authentication with Authentik (for Seafile)?

The forward auth ensures that every viewer for the site is now forced to login to authentik (with his account, 2FA, it’s quite secure I guess).

Without users visiting a seafile instance, have the option to login by SSO, or use their (seafile) login credentials. At no point they’re forced to actually authenticate against Authentik.
That can be enforced by setting up Authentik and Seafile properly but clients fail to authenticate against Authentik.

Thx
Stefan

In the latest version, you can use the OS’s browser for authenticating the desktop clients. As long as you can login correctly in web browser, you can login via desktop clients.

https://manual.seafile.com/config/seahub_settings_py/#single-sign-on

@PackElend Does that work?

Hi,
Im sorry I’m gone for offline vacation, I’ll mid september again
thx