SSO integration for Agora (Discourse)
As a network member, I want to have a single sign-on on the Agora so that I can access different tools withouth logging in multiple times and with different credentials.
Acceptance criteria
- The identity management and SSO system is provided by #25 (moved) and user authentication must happen there
- Users can login with username or e-mail address
- Existing users on agora have been imported to LDAP/Keycloak and have no duplicates
- The registration and login process has been thoroughly tested and provides a good UX, with a single straightforward option and without loose ends
Tasks
-
Analyse possible paths for migrating existing users on Agora -
Create a topic with information about the new identity system -
Migrate users to Keycloak (BACKUP BEFORE!) -
Setup discourse to use Keycloak as identity provider and SSO
cc @yala