GitHub 0

Wekan

Set up Wekan kanban board with Pocket ID OIDC

Requirements

  • Wekan
  • HTTPS connection to your Wekan server

Create OIDC Client in Pocket ID

  1. Create a new OIDC Client in Pocket ID (e.g., wekan).
  2. Set the Callback URL to the value below, or leave blank to autofill on first login.
    https://<wekan-url>/_oauth/oidc
  3. Optional: Download a PNG or SVG logo from the Wekan project and upload.
  4. Copy the Client ID, and Client Secret for use in the next section.

Configure Wekan env variables

Use the following environment variables to configure OpenID (Docker shown):

services: ... wekan: ... environment: - OAUTH2_ENABLED=true - OIDC_REDIRECTION_ENABLED=true # for mandatory - OAUTH2_LOGIN_STYLE=popup # or redirect - OAUTH2_CLIENT_ID=xxxxx-xxxxx-xxxxx - OAUTH2_SECRET=xxxxx-xxxxx-xxxxx - OAUTH2_SERVER_URL=https://pocket-id.tld - OAUTH2_AUTH_ENDPOINT=/authorize - OAUTH2_USERINFO_ENDPOINT=/api/oidc/userinfo - OAUTH2_TOKEN_ENDPOINT=/api/oidc/token - OAUTH2_ID_MAP=preferred_username - OAUTH2_FULLNAME_MAP=name - OAUTH2_USERNAME_MAP=preferred_username - OAUTH2_EMAIL_MAP=email ...

After configuration is tested and working, you can adjust a few other OpenID settings in the gui at Admin Panel > Settings Layout:

Notes

Configuration adapted from the Authentik guide for Wekan. Tested and working in Wekan v7.90.

Help improve this page
Edit this page on GitHub