Login method selector when using third party authentication #3774

New Issue

Closed

opened 2026-02-05 07:26:06 +03:00 by OVERLORD · 4 comments

OVERLORD commented 2026-02-05 07:26:06 +03:00

Owner

Copy Link

Originally created by @mbsimulations on GitHub (May 2, 2023).

Describe the feature you'd like

When using third party authentication options like Azure AD the default login fields username and password shoul be hidden and a prompt should show up to choose which authentication method the user wants to use.

Describe the benefits this would bring to existing BookStack users

Better user experience when users can select their preferred login method and not being misled by the integrated login option which would not work if the user is only registered via his specific login method. Also the admin still has the possibility to easily login via the builtin login.

Can the goal of this request already be achieved via other means?

Partly by selecting the method to use but it can be misleading in environments where only third party logins are being used

Have you searched for an existing open/closed issue?

• I have searched for existing issues and none cover my fundemental request

How long have you been using BookStack?

6 months to 1 year

Additional context

No response

Originally created by @mbsimulations on GitHub (May 2, 2023). ### Describe the feature you'd like When using third party authentication options like Azure AD the default login fields username and password shoul be hidden and a prompt should show up to choose which authentication method the user wants to use. ### Describe the benefits this would bring to existing BookStack users Better user experience when users can select their preferred login method and not being misled by the integrated login option which would not work if the user is only registered via his specific login method. Also the admin still has the possibility to easily login via the builtin login. ### Can the goal of this request already be achieved via other means? Partly by selecting the method to use but it can be misleading in environments where only third party logins are being used ### Have you searched for an existing open/closed issue? - [X] I have searched for existing issues and none cover my fundemental request ### How long have you been using BookStack? 6 months to 1 year ### Additional context _No response_

OVERLORD added the 🔨 Feature Request:cat2:🐈 Possible duplicate labels 2026-02-05 07:26:06 +03:00

OVERLORD closed this issue 2026-02-05 07:26:10 +03:00

OVERLORD commented 2026-02-05 07:26:22 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (May 2, 2023):

Closely related to #1090, may consider these close enough to be duplicate, since this kind of approach somewhat requires a change of design intent of the social providers essentially acting as primary options instead of additive to the primary auth option.

@mb-simulations Based upon the information above, for your particular use-case, do you happen to use just the AzureAD provider alone?

@ssddanbrown commented on GitHub (May 2, 2023): Closely related to #1090, may consider these close enough to be duplicate, since this kind of approach somewhat requires a change of design intent of the social providers essentially acting as primary options instead of additive to the primary auth option. @mb-simulations Based upon the information above, for your particular use-case, do you happen to use just the AzureAD provider alone?

OVERLORD commented 2026-02-05 07:26:26 +03:00

Author

Owner

Copy Link

@mbsimulations commented on GitHub (May 2, 2023):

Yes, I enabled auto registration for the Azure AD provider which is the only method of authentication that is allowed to be used in this specific deployment. I have seen the issue you mentioned but did not consider it a duplicate because I still want to be able to select the default login provider as a fallback for the admin user. But it should not be the main thing advertised to the user that is trying to login.

@mbsimulations commented on GitHub (May 2, 2023): Yes, I enabled auto registration for the Azure AD provider which is the only method of authentication that is allowed to be used in this specific deployment. I have seen the issue you mentioned but did not consider it a duplicate because I still want to be able to select the default login provider as a fallback for the admin user. But it should not be the main thing advertised to the user that is trying to login.

OVERLORD commented 2026-02-05 07:26:31 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (May 3, 2023):

Okay, I will close this off as already covered by #1090. I don't feel it's worth specifically supporting something for an admin fall-back as I'm sure whatever option added for #1090 would be revert-able, at least for temporary admin access.

There are some CSS workarounds in that other thread, that could be used to hide the default auth method.

Yes, I enabled auto registration for the Azure AD provider which is the only method of authentication that is allowed to be used in this specific deployment.

For this type of scenario, you might find OIDC to be a much better fit, since you'll also get a single-click (Or no click/auto) login, group sync and no default login option.
I recently made a guide specifically for AzureAD here: https://www.youtube.com/watch?v=CL5kMFkopHY

@ssddanbrown commented on GitHub (May 3, 2023): Okay, I will close this off as already covered by #1090. I don't feel it's worth specifically supporting something for an admin fall-back as I'm sure whatever option added for #1090 would be revert-able, at least for temporary admin access. There are some CSS workarounds in that other thread, that could be used to hide the default auth method. > Yes, I enabled auto registration for the Azure AD provider which is the only method of authentication that is allowed to be used in this specific deployment. For this type of scenario, you might find [OIDC](https://www.bookstackapp.com/docs/admin/oidc-auth/) to be a much better fit, since you'll also get a single-click (Or no click/auto) login, group sync and no default login option. I recently made a guide specifically for AzureAD here: https://www.youtube.com/watch?v=CL5kMFkopHY

OVERLORD commented 2026-02-05 07:26:32 +03:00

Author

Owner

Copy Link

@mbsimulations commented on GitHub (May 3, 2023):

Thank you very much for the helpful advice. I tried OIDC today and it worked like a charm. Exactly what I was looking for!

@mbsimulations commented on GitHub (May 3, 2023): Thank you very much for the helpful advice. I tried OIDC today and it worked like a charm. Exactly what I was looking for!

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

development

l10n_development

further_theme_development

release

llm_only

vectors

v25-11

docker_env

drawio_rendering

user_permissions

ldap_host_failover

svg_image

prosemirror

captcha_example

fix/video-export

v25.12.3

v25.12.2

v25.12.1

v25.12

v25.11.6

v25.11.5

v25.11.4

v24.11.4

v25.11.3

v25.11.2

v25.11.1

v25.11

v25.07.3

v25.07.2

v25.07.1

v25.07

v25.05.2

v25.05.1

v25.05

v25.02.5

v25.02.4

v25.02.3

v25.02.2

v25.02.1

v25.02

v24.12.1

v24.12

v24.10.3

v24.10.2

v24.10.1

v24.10

v24.05.4

v24.05.3

v24.05.2

v24.05.1

v24.05

v24.02.3

v24.02.2

v24.02.1

v24.02

v23.12.3

v23.12.2

v23.12.1

v23.12

v23.10.4

v23.10.3

v23.10.2

v23.10.1

v23.10

v23.08.3

v23.08.2

v23.08.1

v23.08

v23.06.2

v23.06.1

v23.06

v23.05.2

v23.05.1

v23.05

v23.02.3

v23.02.2

v23.02.1

v23.02

v23.01.1

v23.01

v22.11.1

v22.11

v22.10.2

v22.10.1

v22.10

v22.09.1

v22.09

v22.07.3

v22.07.2

v22.07.1

v22.07

v22.06.2

v22.06.1

v22.06

v22.04.2

v22.04.1

v22.04

v22.03.1

v22.03

v22.02.3

v22.02.2

v22.02.1

v22.02

v21.12.5

v21.12.4

v21.12.3

v21.12.2

v21.12.1

v21.12

v21.11.3

v21.11.2

v21.11.1

v21.11

v21.10.3

v21.10.2

v21.10.1

v21.10

v21.08.6

v21.08.5

v21.08.4

v21.08.3

v21.08.2

v21.08.1

v21.08

v21.05.4

v21.05.3

v21.05.2

v21.05.1

v21.05

v21.04.6

v21.04.5

v21.04.4

v21.04.3

v21.04.2

v21.04.1

v21.04

v0.31.8

v0.31.7

v0.31.6

v0.31.5

v0.31.4

v0.31.3

v0.31.2

v0.31.1

v0.31.0

v0.30.7

v0.30.6

v0.30.5

v0.30.4

v0.30.3

v0.30.2

v0.30.1

v0.30.0

v0.29.3

v0.29.2

v0.29.1

v0.29.0

v0.28.3

v0.28.2

v0.28.1

v0.28.0

v0.27.5

v0.27.4

v0.27.3

v0.27.2

v0.27.1

v0.27

v0.26.4

v0.26.3

v0.26.2

v0.26.1

v0.26.0

v0.25.5

v0.25.4

v0.25.3

v0.25.2

v0.25.1

v0.25.0

v0.24.3

v0.24.2

v0.24.1

v0.24.0

v0.23.2

v0.23.1

v0.23.0

v0.22.0

v0.21.0

v0.20.3

v0.20.2

v0.20.1

v0.20.0

v0.19.0

v0.18.5

v0.18.4

v0.18.3

v0.18.2

v0.18.1

v0.18.0

v0.17.4

v0.17.3

v0.17.2

v0.17.1

v0.17.0

v0.16.3

v0.16.2

v0.16.1

v0.16.0

v0.15.3

v0.15.2

v0.15.1

v0.15.0

v0.14.3

v0.14.2

v0.14.1

v0.14.0

v0.13.1

v0.13.0

v0.12.2

v0.12.1

v0.12.0

v0.11.2

v0.11.1

v0.11.0

v0.10.0

v0.9.3

v0.9.2

v0.9.1

v0.9.0

v0.8.2

v0.8.1

v0.8.0

v0.7.6

v0.7.5

v0.7.4

v0.7.3

0.7.2

v.0.7.1

v0.7.0

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.0

Labels

Clear labels

🎨 Design

📖 Docs Update

🐛 Bug

🐛 Bug

:cat2:🐈 Possible duplicate

💿 Database

☕ Open to discussion

💻 Front-End

🐕 Support

🚪 Authentication

🌍 Translations

🔌 API Task

🏭 Back-End

⛲ Upstream

🔨 Feature Request

🛠️ Enhancement

🛠️ Enhancement

🛠️ Enhancement

❤️ Happy feedback

🔒 Security

🔍 Pending Validation

💆 UX

📝 WYSIWYG Editor

🌔 Out of scope

🔩 API Request

:octocat: Admin/Meta

🖌️ View Customization

❓ Question

🚀 Priority

🛡️ Blocked

🚚 Export System

♿ A11y

🔧 Maintenance

> Markdown Editor

No Label :cat2:🐈 Possible duplicate 🔨 Feature Request

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/BookStack#3774