...
Configuration
Basic configuration
Integration with EduTEAMS
Integration with other OIDC IDP provider
Email communication
To perform integration of external identity provider to onboard users co
| Code Block |
|---|
# General settings
SQLALCHEMY_DATABASE_URI = 'postgresql:///indico'
SECRET_KEY = b'_B\x11=\x8e\x8b\x7f\xdd\xf1\xe8>in\xd6\xb8m\xcb\xcf\x86\x05\xc0W\xc3\x02\x03\xb1\x7f\xf8Y\xb4\xa6\\'
BASE_URL = 'https://indico-test.eufus.psnc.pl'
CELERY_BROKER = 'redis://127.0.0.1:6379/0'
REDIS_CACHE_URL = 'redis://127.0.0.1:6379/1'
DEFAULT_TIMEZONE = 'Europe/Warsaw'
DEFAULT_LOCALE = 'en_US'
ENABLE_ROOMBOOKING = False
CACHE_DIR = '/opt/indico/cache'
TEMP_DIR = '/opt/indico/tmp'
LOG_DIR = '/opt/indico/log'
STORAGE_BACKENDS = {'default': 'fs:/opt/indico/archive'}
ATTACHMENT_STORAGE = 'default'
# Email settings
SMTP_SERVER = ('smtp.man.poznan.pl', 587)
SMTP_USE_TLS = True
SMTP_LOGIN = '##########'
SMTP_PASSWORD = '##########'
SUPPORT_EMAIL = '############'
PUBLIC_SUPPORT_EMAIL = '##########'
NO_REPLY_EMAIL = 'no-reply@indico-test.eufus.psnc.pl'
STATIC_FILE_METHOD = ('xaccelredirect', {'/opt/indico': '/.xsf/indico'})
|
Integration with EduTEAMS
| Code Block |
|---|
...
AUTH_PROVIDERS = {
'eduteams': {
'type': 'authlib',
'title': 'Eurofusion EduTEAMS',
'authlib_args': {
'client_id': '##########',
'client_secret': '##########',
'server_metadata_url': 'https://proxy.acc.eurofusion.eduteams.org/.well-known/openid-configuration',
'client_kwargs': {'scope': 'openid email profile'}
},
'callback_uri': '/multipass/authlib/eduteams',
'user_info_endpoint': 'https://proxy.acc.eurofusion.eduteams.org/OIDC/userinfo',
'use_id_token': False,
},
...
# other authentication provider defs goes here
}
IDENTITY_PROVIDERS = 'keycloakdev{
'eduteams': {
'type': 'authlib',
'title': 'Devel KEYCLOAK [test puprose]Eurofusion IDP',
'authlib_argsmapping': {
'clientfirst_idname': 'indico-test.eufus.psnc.plgiven_name',
'clientlast_secretname': '##########family_name',
'server_metadata_urlemail': 'https://keycloak-dev.apps.paas-dev.psnc.pl/auth/realms/indico-oneprovider.onedata.edu.pl/.well-known/openid-configuration'email'
},
'trusted_email': True,
'clientsynced_kwargsfields': {'scopefirst_name':, 'openid email profilelast_name'}
},
# other idps goes },
here
...
}
PROVIDER_MAP = {
'callback_urieduteams': '/multipass/authlib/keycloakdeveduteams',
...
# other idps mappings goes here
} |
Integration with other OIDC IDP provider
| Code Block |
|---|
AUTH 'use_id_token': True,
}
}
IDENTITY_PROVIDERS = {
...
'eduteamskeycloakdev': {
'type': 'authlib',
'title': 'Eurofusion IDPDevel KEYCLOAK [test puprose]',
'mappingauthlib_args': {
'firstclient_nameid': 'given_name'indico-test.eufus.psnc.pl',
'client_secret': '##########',
'lastserver_metadata_nameurl': 'family_namehttps://keycloak-dev.apps.paas-dev.psnc.pl/auth/realms/indico-oneprovider.onedata.edu.pl/.well-known/openid-configuration',
'client_kwargs': {'emailscope': 'openid email profile'}
},
'trustedcallback_emailuri': True'/multipass/authlib/keycloakdev',
'synceduse_id_fieldstoken': {'first_name', 'last_name'}True,
},
}
IDENTITY_PROVIDERS = {
...
'keycloakdev': {
'type': 'authlib',
'title': 'KeycloakDEV IDP',
'mapping': {
'first_name': 'given_name',
'last_name': 'family_name',
'email': 'email'
},
'trusted_email': True,
}
}
PROVIDER_MAP = {
...
'eduteamskeycloakdev': 'eduteams',
'keycloakdev': 'keycloakdev'
}keycloakdev'
} |
Email communication
| Code Block |
|---|
# Email settings
SMTP_SERVER = ('smtp.man.poznan.pl', 587)
SMTP_USE_TLS = True
SMTP_LOGIN = '##########'
SMTP_PASSWORD = '##########'
SUPPORT_EMAIL = '############'
PUBLIC_SUPPORT_EMAIL = '##########'
NO_REPLY_EMAIL = 'no-reply@indico-test.eufus.psnc.pl' |
