Single Sign-On / OAuth 2.0 for admin users in phplist

kasioumis · February 22, 2017, 12:01am

Hello,

For a local phplist installation (latest 3.3.1) we’d like to implement Single Sign-On / OAuth 2.0 login for the administrators (for example at …example.com/lists/admin). We can’t find any similar threads in the forum or existing plugins (at resources.phplist.com/plugins/start) and we were wondering if something already exists or if not, how does one go about creating a plugin for that? What functions should be implemented? Where should the plugin be placed? We found some related resources at https://resources.phplist.com/develop/authentication_plugin and at https://resources.phplist.com/documentation/errors/adminauthchange but we’re not sure how up to date they are. Any pointers would be appreciated.

Thanks!

duncanc · February 22, 2017, 6:31am

@kasioumis Those documentation pages are probably all there is regarding authentication, but there is quite a bit of documentation on plugins in general at https://resources.phplist.com/develop/start

There are a few plugins that do some sort of SSO so might be used as a starting point. All publicly available plugins are on GitHub.

samtuke · February 23, 2017, 9:41pm

@kasioumis The REST API V2 is an example of a plugin which uses authentication plugin hooks to sign in users remotely. It may be useful as a reference.

kasioumis · February 24, 2017, 12:40pm

@samtuke, you are referring to this one: phplist-plugin-restapi, right? Thanks for the pointer!

samtuke · February 24, 2017, 12:59pm

@kasioumis Yes that’s right, and specifically V2 (that repository contains two separate versions of the plugin with separate features and codebases).