habsi/authentik
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
cba8e84bbe7cb7362f23a26dc0cc455157ea81a5
authentik/website/integrations/services/immich/index.md
ZuluWhiskey 507f9b7ae2 website/integrations: multiple integration edits (#7923) 
* Update authentik aspect of Fresh RSS documentation to flow better

* Changes to standardise documentation across Integrations

* Removing a comma

* Changes to Gravtee to standardise documentation across Integrations

* - Changing Home-Assistant to Home Assistant
- Attempt to standardise the documentation
- Attempted to make the Home Assistant configuration easier to follow

* make website for gravitee and immich#

* Fixing MD formatting

* make website for freshrss and home assistant

* Fix Immich note formatting

* make website immich to fix notes formatting

* fix typo

Signed-off-by: Jens Langhammer <jens@goauthentik.io>

* Move authentik section above the Home Assistant section for consistency

---------

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
Co-authored-by: Jens Langhammer <jens@goauthentik.io>
2024-02-23 12:52:17 -06:00

2.0 KiB
Raw Blame History

title
title
Immich

Support level: Community

What is Immich

Immich is a self-hosted backup solution for photos and videos on mobile devices.

-- https://immich.app/

Preparation

The following placeholders will be used:

  • https://immich.company is the URL used to access the Immich instance.
  • authentik.company is the FQDN of the authentik install.

authentik configuration

  1. Create a new OAuth2/OpenID Provider under Applications > Providers using the following settings:
    • Name: Immich
    • Authentication flow: default-authentication-flow
    • Authorization flow: default-provider-authorization-explicit-consent
    • Client type: Confidential
    • Client ID: Either create your own Client ID or use the auto-populated ID
    • Client Secret: Either create your own Client Secret or use the auto-populated secret :::note Take note of the Client ID and Client Secret as they are required when configuring Immich. :::
    • Redirect URIs/Origins (RegEx): :::note Please note that the following URIs are just examples. Be sure to include all of the domains / URLs that you will use to access Immich. ::: - app.immich:/ - https://immich.company/auth/login - https://immich.company/user-settings
    • Signing Key: authentik Self-signed Certificate
    • Leave everything else as default
  2. Open the new provider you've just created.
  3. Make a note of the OpenID Configuration Issuer.

Immich configuration

Immich documentation can be found here: https://immich.app/docs/administration/oauth

  1. In Immich, navigate to Administration > Settings > OAuth Authentication
  2. Configure Immich as follows:
    • Issuer URL: Populate this field with the OpenID Configuration Issuer
    • Client ID: Enter your Client ID from authentik
    • Client Secret: Enter your Client Secret from authentik
    • Scope: openid email profile