OpenID Connect authentication provider for Sentry

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for bufferoverflow from gravatar.com bufferoverflow Avatar for fh1ch from gravatar.com fh1ch Avatar for max-wittig from gravatar.com max-wittig Avatar for nejch from gravatar.com nejch Avatar for siemens-code-bot from gravatar.com siemens-code-bot

Unverified details

These details have not been verified by PyPI
Meta
  • License: Other/Proprietary License (Apache 2.0)
  • Author: Max Wittig
  • Requires: Python <4.0, >=3.11
Classifiers
Report project as malware

Project description

An SSO provider for Sentry which enables OpenID Connect Apps authentication.

This is a fork of sentry-auth-google.

Why fork, instead of adapting sentry-auth-google to work with every OpenID Connect provider?

The maintainer has different ideas with sentry-auth-google. See:

Install

$ pip install sentry-auth-oidc

Example Setup for Google

Start by creating a project in the Google Developers Console.

In the Authorized redirect URIs add the SSO endpoint for your installation:

https://sentry.example.com/auth/sso/

Naturally other providers, that are supporting OpenID-Connect can also be used (like GitLab).

Finally, obtain the API keys and the well-known account URL and plug them into your sentry.conf.py:

OIDC_CLIENT_ID = ""

OIDC_CLIENT_SECRET = ""

OIDC_SCOPE = "openid email"

OIDC_DOMAIN = "https://accounts.google.com"  # e.g. for Google

The OIDC_DOMAIN defines where the OIDC configuration is going to be pulled from. Basically it specifies the OIDC server and adds the path .well-known/openid-configuration to it. That’s where different endpoint paths can be found.

Detailed information can be found in the ProviderConfig specification.

You can also define OIDC_ISSUER to change the default provider name in the UI, even when the OIDC_DOMAIN is set.

If your provider doesn’t support the OIDC_DOMAIN, then you have to set these required endpoints by yourself (autorization_endpoint, token_endpoint, userinfo_endpoint, issuer).

OIDC_AUTHORIZATION_ENDPOINT = "https://accounts.google.com/o/oauth2/v2/auth"  # e.g. for Google

OIDC_TOKEN_ENDPOINT = "https://www.googleapis.com/oauth2/v4/token"  # e.g. for Google

OIDC_USERINFO_ENDPOINT = "https://www.googleapis.com/oauth2/v3/userinfo" # e.g. for Google

OIDC_ISSUER = "Google"

Development

FAQ

  • If you are using macOS brew’s openssl and you get a psycopg build error such as:
    ld: library not found for -lssl
    Please setup the following environment variables:
    export LDFLAGS="-L/usr/local/opt/openssl/lib"
export CPPFLAGS="-I/usr/local/opt/openssl/include"

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for bufferoverflow from gravatar.com bufferoverflow Avatar for fh1ch from gravatar.com fh1ch Avatar for max-wittig from gravatar.com max-wittig Avatar for nejch from gravatar.com nejch Avatar for siemens-code-bot from gravatar.com siemens-code-bot

Unverified details

These details have not been verified by PyPI
Meta
  • License: Other/Proprietary License (Apache 2.0)
  • Author: Max Wittig
  • Requires: Python <4.0, >=3.11
Classifiers

Release history Release notifications | RSS feed

This version

9.1.0

9.0.1

9.0.0

8.1.0

8.0.0

7.0.0

6.0.0

5.0.0

4.0.1

4.0.0

3.0.0

2.1.0

2.0.0

1.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

sentry_auth_oidc-9.1.0.tar.gz (8.9 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

sentry_auth_oidc-9.1.0-py3-none-any.whl (11.0 kB view details)

Uploaded Python 3

File details

Details for the file sentry_auth_oidc-9.1.0.tar.gz.

File metadata

  • Download URL: sentry_auth_oidc-9.1.0.tar.gz
  • Upload date:
  • Size: 8.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for sentry_auth_oidc-9.1.0.tar.gz
Algorithm Hash digest
SHA256 a2e0dd9be32b6d7d86eb9b483763967a749e8023b40ed36046a081a36985c0d5
MD5 ac09c8af4a8b91107439f49bf04f5e4f
BLAKE2b-256 1eb1edb0507f692c115a8f1bd78eeb3b72a03f991a408f4b744e2ba0085a9bf5

See more details on using hashes here.

Provenance

The following attestation bundles were made for sentry_auth_oidc-9.1.0.tar.gz:

Publisher: publish.yml on siemens/sentry-auth-oidc

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file sentry_auth_oidc-9.1.0-py3-none-any.whl.

File metadata

File hashes

Hashes for sentry_auth_oidc-9.1.0-py3-none-any.whl
Algorithm Hash digest
SHA256 ce45f249898595208961acc74f2c306017541abc2cd8f6e05e185f5cec618bb4
MD5 5205e167ddc74f15a6ff20b3911b4828
BLAKE2b-256 e06b1e9f41b6a7a9e620819c431a569865010e4bbb987397d28edadc342a746e

See more details on using hashes here.

Provenance

The following attestation bundles were made for sentry_auth_oidc-9.1.0-py3-none-any.whl:

Publisher: publish.yml on siemens/sentry-auth-oidc

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page