website/integrations-all: convert authentik configuration to wizard (#13144)

* init * 6 more * tana... * quick reformat * welp only time for one change * wip * wip * wip * wip * wip * wip * wip * wip * Revert "wip" This reverts commit e71f0d22e3f093350e8d12eaad5e5c0f9d38253c. * wip * wip * wip * wip * wip * wip * wip * wip * wip * a
2025-03-26 17:38:57 -04:00
parent 27aed4b315
commit 13fc216c68
93 changed files with 2248 additions and 2070 deletions
--- a/website/integrations/services/owncloud/index.md
+++ b/website/integrations/services/owncloud/index.md
@ -23,60 +23,65 @@ This guide focuses on deploying ownCloud installations using Docker. If you depl

 ## authentik configuration

-To support all ownCloud applications, multiple application/provider pairs are required—one each for the Web UI, Desktop application, Android application, and iOS application.
+To support the integration of ownCloud with authentik, you need to create multiple application/provider pairs in authentik. A different pair is required for the Web UI, Desktop application, Android application, and iOS application.

 The configuration for each application is nearly identical, except for the **Client ID**, **Client Secret**, and the **Redirect URI** values, which are [predefined](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-ids-secrets-and-redirect-uris) by ownCloud for the Desktop, Android, and iOS applications.

-### Create applications/providers
+### Create an application and provider in authentik

-Follow these steps to create the required application/provider pairs. You will need to repeat the process four times: once each for the Desktop application, Web UI, Android application, and iOS application
+1. Log in to authentik as an admin, and open the authentik Admin interface.
+2. Navigate to **Applications** > **Applications** and click **Create with Provider** to create an application and provider pair. (Alternatively you can create only an application, without a provider, by clicking **Create**.) You will need to repeat the process four times: once each for the Desktop application, Web UI, Android application, and iOS application.

-1. In the Admin interface, navigate to **Applications** > **Applications**.
-2. Use the wizard to create the application and provider, with the following settings:
+- **Application**: provide a descriptive name, an optional group for the type of application, the policy engine mode, and optional UI settings.
+- **Choose a Provider type**: select **OAuth2/OpenID Connect** as the provider type.
+- **Configure the Provider**: provide a name (or accept the auto-provided name), the authorization flow to use for this provider, and the following required configurations.

-    - **Application**: Provide a descriptive name (e.g., `owncloud`, `owncloud-desktop`, `owncloud-android`, `owncloud-ios`), an optional group for the type of application, the policy engine mode, and optional UI settings.
-    - **Choose a Provider type**: Select **OAuth2/OpenID Provider** as the provider type.
-    - **Configure the Provider**: Provide a name (the default name will suffice for most users), the authorization flow to use for this provider, and the following required configurations. The settings for each of the four application/provider pairs are shown below:
+    - Note the **Client ID**,**Client Secret**, and **slug** values because they will be required later.
+    - **Protocol settings:**

-        - **Protocol settings:**
+        **Web UI:**

-            **Web UI:**
+        - **Signing Key**: Select any available signing key.
+        - **Client ID**: Use the value generated by authentik.
+        - **Client Secret**: Use the value generated by authentik.
+        - **Redirect URIs**:

-            - **Signing Key**: Select any available signing key.
-            - **Client ID**: Use the value generated by authentik.
-            - **Client Secret**: Use the value generated by authentik.
-            - **Redirect URIs**:
-                - Strict: `https://owncloud.company/apps/openidconnect/redirect`
+            - Strict: <kbd>https://<em>owncloud.company</em>/apps/openidconnect/redirect</kbd>

-            **Desktop Application**
+        **Desktop Application**

-            - **Signing Key**: Select any available signing key.
-            - **Client ID**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-id).
-            - **Client Secret**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-secret).
-            - **Redirect URIs**:
-                - Regex: `http://localhost:\d+`
-                - Regex: `http://127.0.0.1:\d+`
+        - **Signing Key**: Select any available signing key.
+        - **Client ID**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-id).
+        - **Client Secret**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-secret).
+        - **Redirect URIs**:

-            **Android Application**
+            - Regex: <kbd>http://localhost:\d+</kbd>
+            - Regex: <kbd>http://127.0.0.1:\d+</kbd>

-            - **Signing Key**: Select any available signing key.
-            - **Client ID**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-id).
-            - **Client Secret**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-secret).
-            - **Redirect URI**:
-                - Strict: `oc://android.owncloud.com`
+        **Android Application**

-            **iOS Application**
+        - **Signing Key**: Select any available signing key.
+        - **Client ID**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-id).
+        - **Client Secret**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-secret).
+        - **Redirect URI**:

-            - **Signing Key**: Select any available signing key.
-            - **Client ID**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-id).
-            - **Client Secret**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-secret).
-            - **Redirect URI**:
-                - Strict: `oc://ios.owncloud.com`
+            - Strict: <kbd>oc://android.owncloud.com</kbd>

-        - **Advanced protocol settings:**
-            - **Scopes**: Select the following scopes for each of the four application/provider pairs: `email`, `offline_access`, `openid`, `profile`.
+        **iOS Application**

-    - **Configure Bindings** (optional): To manage the listing and access to applications on a user's **My applications** page, you can optionally create a [binding](https://docs.goauthentik.io/docs/add-secure-apps/flows-stages/bindings/) between the application and a specific policy, group, or user. Keep in mind that if you do not specify any bindings, all users will have access to the application. For more information about user access, refer to our documentation about [authorization](https://docs.goauthentik.io/docs/add-secure-apps/applications/manage_apps#policy-driven-authorization) and [hiding an application](https://docs.goauthentik.io/docs/add-secure-apps/applications/manage_apps#hide-applications).
+        - **Signing Key**: Select any available signing key.
+        - **Client ID**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-id).
+        - **Client Secret**: Use the predefined value found in the [ownCloud admin manual](https://doc.owncloud.com/server/latest/admin_manual/configuration/user/oidc/oidc.html#client-secret).
+        - **Redirect URI**:
+
+            - Strict: <kbd>oc://ios.owncloud.com</kbd>
+
+    - **Advanced protocol settings:**
+        - **Scopes**: Select the following scopes for each of the four application/provider pairs: `email`, `offline_access`, `openid`, `profile`.
+
+- **Configure Bindings** _(optional)_: you can create a [binding](/docs/add-secure-apps/flows-stages/bindings/) (policy, group, or user) to manage the listing and access to applications on a user's **My applications** page.
+
+3. Click **Submit** to save the new application and provider.

 ### Service discovery