mirror of
https://github.com/BookStackApp/BookStack.git
synced 2026-02-11 03:13:15 +03:00
Google domain authentication is not working with bookstackapp integration #405
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @praneethsharma on GitHub (Aug 15, 2017).
This is not a bug, rather i did not find a discussion forum to get help with this issue
I have followed the instructions provided in https://www.bookstackapp.com/docs/admin/social-auth/ to integrate with google.
when i open bookstackapp, i can see "Login with Google" option. But when i click that it throws message "No action defined".
But in Authorized redirect URIs, I have provided the URI http://abc.com/login/service/google/callback
http://abc.com/register/service/google/callback
Could i get some assistance to resolve this this issue.
@ssddanbrown commented on GitHub (Aug 17, 2017):
Hi @praneethsharma,
Looking at the notification shown it would suggest the request to google and the callback redirect is working fine.
The only thing I can imagine might be wrong here is that sessions are not saving.
Are normal login methods working okay and are you able to upload images to pages?
Have you made any changes to any variables in
.envstarting withSESSION_?Did you set the permissions of the
storage/folder to be writable by the server?In the
.envfile you could try changingSESSION_DRIVER=filetoSESSION_DRIVER=databaseto see if that helps at all.@praneethsharma commented on GitHub (Sep 2, 2017):
Hi @ssddanbrown ,
Sorry for late response. I tried changing
SESSION_DRIVER=filetoSESSION_DRIVER=databaseand now i was redirected to google login page and after entering credentials, i got below error message. I believe there is an issue with callback URL which gave me below error message.Request URL:http://abc.com/login/service/google/callback?state=Sz08TS8opjwtsPnrOJE8YQFru2D4F4ClZpkrlTpw&code=4/Td4ffvuLK1Du5FGDkdGA7vYNBXxTzltxWzKlinz-qrE&authuser=0&hd=abc.com&session_state=02f9479a8b048174c347a0e7d38bbfe37bbfb1dd..0f69&prompt=none
I created a new API, after updating the credentials, i got new error that my google account is not associated with any users.
Does this mean, if i am part of a custom domain under google, then i need to do Domain verification in APIs & Auth and google mail.
@ssddanbrown commented on GitHub (Sep 2, 2017):
@praneethsharma Thanks for the extra information.
To find the issue behind that message, to give a better idea of what the issue could be, the instructions here can be followed to view the error message in more detail:
https://www.bookstackapp.com/docs/admin/debugging/
@praneethsharma commented on GitHub (Oct 3, 2017):
@ssddanbrown , today i tried integrating with slack, got stuck at same point,
So made "APP_DEBUG=true" in .env file.
then tried loading the page. i could see few options enabled.
laravel.log looks like this, not sure what to look at now. could you please check.
#48 {main} #47 /var/www/bookstack/public/index.php(53): Illuminate\Foundation\Http\Kernel->handle(Object(Illuminate\Http\Request)) #46 /var/www/bookstack/vendor/laravel/framework/src/Illuminate/Foundation/Http/Kernel.php(116): Illuminate\Foundation\Http\Kernel->sendRequestThroughRouter(Object(Illuminate\Http\Re quest)) #45 /var/www/bookstack/vendor/laravel/framework/src/Illuminate/Foundation/Http/Kernel.php(149): Illuminate\Pipeline\Pipeline->then(Object(Closure)) #44 /var/www/bookstack/vendor/laravel/framework/src/Illuminate/Pipeline/Pipeline.php(102): Illuminate\Routing\Pipeline->Illuminate\Routing\{closure}(Object(Illuminate\Http\Request))@ssddanbrown commented on GitHub (Oct 3, 2017):
Hi @praneethsharma, That error notification is saying you have not linked the account to a user. If your profile already exists login > Go to profile settings > At the bottom link your Slack account.
If your login does not already exist go to the 'Sign-up' page and select Slack there instead of the login page.
@praneethsharma commented on GitHub (Oct 6, 2017):
Hi @ssddanbrown slack is also integrated with google. So slack is also depended on google's authentication. I will switch back to google and update you.
@praneethsharma commented on GitHub (Oct 6, 2017):
Its the same issue. Trying to understand this, according to the social authentication documentation, we are creating google+ API.
But i have custom domain in google. In that case, should i create any other API, so that all the members of domain will be able to login to bookstackapp with domain credentials ?
I am not a g-suite admin, so is that a restriction ? I suspect this because, i am able to create a project, create API and apply credentials in .env file. But i see no users are linked to this account. Does this mean, no users are part of the project i created ?
@ssddanbrown commented on GitHub (Oct 6, 2017):
@praneethsharma Any users with a google account will be able to use your auth unless they are part of a business account where the admin has disabled this.
The screenshots above still show the login page. The error message shows the auth method is talking to the external service okay.
Can you go to
/registerinstead of/loginand try your slack/google auth option from there? You may have to enable registration in the BookStack settings.@praneethsharma commented on GitHub (Oct 19, 2017):
I tried adding /register instead of /login, i got "registrations are disabled" message.
Yes @ssddanbrown , its part of a business account. I will get admin privileges and try debugging this. Will update here incase of any queries.
@obeardly commented on GitHub (Dec 19, 2017):
@praneethsharma Did you ever get this working? I've had the worst luck at getting Bookstack to authenticate against anything but internal authentication.
@obeardly commented on GitHub (Dec 19, 2017):
@praneethsharma @ssddanbrown I got this working via Slack. I followed the instructions on the page for Third Party Authentication. Then I enabled registration and limited it to my domains. I had each of my users to the the Bookstack registration URL, and register with Slack. I'm off to the races. I hope this will work for you too.
@praneethsharma commented on GitHub (Dec 19, 2017):
@obeardly I tried integrating with Slack, but my slack account was in turn depending on google authentication. So it got back fix google domain authentication. As i did not get G-Suite admin privilege, i couldn't test further.
@ssddanbrown sorry, i should have informed about this. I will not be able to test further as i am not a domain administrator. As @obeardly confirmed that integration with Slack is working, i think we can close this issue.
@praneethsharma commented on GitHub (Nov 21, 2018):
Hey All,
Just wanted to update that i got this work.
Went to my user account settings and i clicked on "Connect Account" option under. So after that i logging out and tried logging in via google account and it worked. But as admin, i am not able to do that for other users.
For now when i create a user, they have to login with password and then go to settings and they are able to link their google account. However, is there a way, i can force all the users in the domain to use google authentication, without they login with password ?
@nekromoff commented on GitHub (Dec 17, 2018):
I did limit login to social accounts only via editing login/register templates and removing standard user+password form parts. Thus only social login option is left.
@praneethsharma commented on GitHub (Dec 27, 2018):
Got it. Thanks @nekromoff