OpenID Connect authentication provider for Sentry

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for bufferoverflow from gravatar.com bufferoverflow Avatar for fh1ch from gravatar.com fh1ch Avatar for max-wittig from gravatar.com max-wittig Avatar for nejch from gravatar.com nejch Avatar for siemens-code-bot from gravatar.com siemens-code-bot

Unverified details

These details have not been verified by PyPI
Meta
Classifiers
Report project as malware

Project description

An SSO provider for Sentry which enables OpenID Connect Apps authentication.

This is a fork of sentry-auth-google.

Why fork, instead of adapting sentry-auth-google to work with every OpenID Connect provider?

The maintainer has different ideas with sentry-auth-google. See:

Install

$ pip install sentry-auth-oidc

Example Setup for Google

Start by creating a project in the Google Developers Console.

In the Authorized redirect URIs add the SSO endpoint for your installation:

https://sentry.example.com/auth/sso/

Naturally other providers, that are supporting OpenID-Connect can also be used (like GitLab).

Finally, obtain the API keys and the well-known account URL and plug them into your sentry.conf.py:

OIDC_CLIENT_ID = ""

OIDC_CLIENT_SECRET = ""

OIDC_SCOPE = "openid email"

OIDC_DOMAIN = "https://accounts.google.com"  # e.g. for Google

The OIDC_DOMAIN defines where the OIDC configuration is going to be pulled from. Basically it specifies the OIDC server and adds the path .well-known/openid-configuration to it. That’s where different endpoint paths can be found.

Detailed information can be found in the ProviderConfig specification.

You can also define OIDC_ISSUER to change the default provider name in the UI, even when the OIDC_DOMAIN is set.

If your provider doesn’t support the OIDC_DOMAIN, then you have to set these required endpoints by yourself (autorization_endpoint, token_endpoint, userinfo_endpoint, issuer).

OIDC_AUTHORIZATION_ENDPOINT = "https://accounts.google.com/o/oauth2/v2/auth"  # e.g. for Google

OIDC_TOKEN_ENDPOINT = "https://www.googleapis.com/oauth2/v4/token"  # e.g. for Google

OIDC_USERINFO_ENDPOINT = "https://www.googleapis.com/oauth2/v3/userinfo" # e.g. for Google

OIDC_ISSUER = "Google"

Development

FAQ

  • If you are using macOS brew’s openssl and you get a psycopg build error such as:
    ld: library not found for -lssl
    Please setup the following environment variables:
    export LDFLAGS="-L/usr/local/opt/openssl/lib"
export CPPFLAGS="-I/usr/local/opt/openssl/include"

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for bufferoverflow from gravatar.com bufferoverflow Avatar for fh1ch from gravatar.com fh1ch Avatar for max-wittig from gravatar.com max-wittig Avatar for nejch from gravatar.com nejch Avatar for siemens-code-bot from gravatar.com siemens-code-bot

Unverified details

These details have not been verified by PyPI
Meta
Classifiers

Release history Release notifications | RSS feed

This version

9.1.1

9.1.0

9.0.1

9.0.0

8.1.0

8.0.0

7.0.0

6.0.0

5.0.0

4.0.1

4.0.0

3.0.0

2.1.0

2.0.0

1.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

sentry_auth_oidc-9.1.1.tar.gz (5.3 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

sentry_auth_oidc-9.1.1-py3-none-any.whl (7.4 kB view details)

Uploaded Python 3

File details

Details for the file sentry_auth_oidc-9.1.1.tar.gz.

File metadata

  • Download URL: sentry_auth_oidc-9.1.1.tar.gz
  • Upload date:
  • Size: 5.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for sentry_auth_oidc-9.1.1.tar.gz
Algorithm Hash digest
SHA256 0be229468fa521ff432ade937f5235af29026eed995ae10e10e35680cb234c86
MD5 afd4b9e7015bd887de80122b36bd7b1b
BLAKE2b-256 815d874da3d0b9816cefe86a580860c34be701aaf20447c1281e400cf8e3adda

See more details on using hashes here.

Provenance

The following attestation bundles were made for sentry_auth_oidc-9.1.1.tar.gz:

Publisher: publish.yml on siemens/sentry-auth-oidc

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file sentry_auth_oidc-9.1.1-py3-none-any.whl.

File metadata

File hashes

Hashes for sentry_auth_oidc-9.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 c5b1bef80cf8754fde4191fed5a76bde6cda8da93344280d3f81abb522801d8f
MD5 ab5431a433ca8d11bdcde80d86fd4914
BLAKE2b-256 9428c7bc956acfd8ddf53009a2601eaf8bdc8af3ac0ff66fbbcf28e149ab49e2

See more details on using hashes here.

Provenance

The following attestation bundles were made for sentry_auth_oidc-9.1.1-py3-none-any.whl:

Publisher: publish.yml on siemens/sentry-auth-oidc

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page