External OAuth Provider Requests #451
Comments
Support Steam as an external OAuth ProviderCurrently, Supabase does not support Steam as an external OAuth provider. Describe the solution you'd likeSupport Steam as an external OAuth Provider. https://partner.steamgames.com/doc/features/auth Describe alternatives you've consideredN/A Additional contextThis article describes how Steam's login method works. |
Add Patreon as OAuth providerSupport Patreon oauth. Describe the solution you'd likeSee feature request netlify/gotrue#312 |
|
Add Quickbooks as an OAuth provider |
Add Orcid as an OAuth providerHi I'd like to publish an app that other researchers can contribute to without signing up to anything, just using the orcid credentials they have for publishing to journals. Could you please add Orcid to the OAuth providers? https://info.orcid.org/documentation/features/public-api/orcid-as-a-sign-in-option-to-your-system/ All the best and many thanks for the great work! |
Add global.id as OAuth ProviderIs your feature request related to a problem? Please describe.Letting users in with a privacy-friendly OAuth Provider while accessing/verifying user data in a privacy-friendly manner if required. Describe the solution you'd likeAdding global.id as sign-in/up option and storing requested data in the user metadata. Describe alternatives you've consideredDidn't really find a good alternative to this provider. Additional contextI would like to implement that but I have never used go before, nor do I have a clue on how to integrate it in the existing codebase. |
Singpass login
Note: Singapore government might move to use SGID |
Foursquare/Swam loginIs your feature request related to a problem? Please describe.Would love to be able to authenticate users with Foursquare/Swarm Describe alternatives you've consideredCurrently using passport-foursquare |
SoundCloud LoginPlease add SoundCloud OAuth provider. Is your feature request related to a problem? Please describe.To extend music streaming platform authentication. Additional contexthttps://developers.soundcloud.com/docs/api/guide#authentication Note: there is an existing PR -- #269 which contains an initial implementation |
Ethereum LoginIs your feature request related to a problem? Please describe.I'd like to let my users log in with their Eth wallet (Metamask, etc) Describe the solution you'd likeJust like Uniswap does. Describe alternatives you've consideredLooks like Redwood has an Eth login. Additional contextn/a Note: there is an existing PR -- #269 which contains an initial implementation |
Auth0Would it be possible to include Auth0 as a login provider. Would like transition over to Supabase however this is preventing me from doing so. Describe alternatives you've consideredTutorial on importing users from Auth0. Relevant resources: |
Tik TokTikTok recently published their OAuth flow Is your feature request related to a problem? Please describe.For the application that I am working on, we convert users from TikTok. Currently, we plan to authenticate them from using Phone authentication, but TikTok support could drastically improve our conversion. Describe the solution you'd likeSocial login with TikTok is supported similar to existing 3rd party providers. Describe alternatives you've consideredThe only other alternative would be to host our own authentication server and use it in tandem with Supabase. Not particularly ideal. Additional contextNote: there is an existing PR -- #269 which contains an initial implementation |
NetlifyAdditional contexthttps://twitter.com/jlengstorf/status/1429611357356187652
https://app.netlify.com/user/applications Relevant Comments:
|
Kakao [ Completed ]Requested on: supabase/supabase#5200 Developer docs: https://developers.kakao.com/product/kakaoLogin Corresponding PR: #366 |
I'd like to work on a generic OAuth2 provider. Since the comments of @rohanliston in August, @kangmingtay has updated the CONTRIBUTING.md text to suggest that such a generic provider is officially regarded as a possible way forward. By default, I would go for a generic OAuth2 client, similar to the one described by the auth0 docs. This is as opposed to a generic OIDC flow, which was previously present in gotrue but was then removed in #927, for reasons which are explained here, and which sound like the Supabase team needs to resolve things internally first. If the generic OAuth2 client is the wrong direction to head in, please let me know. Edit: See #1372 for the PR. |
|
@J0 any updates on the Telegram provider? It has been more than a year now since its request, and as far as I can see it is one of the most requested providers in this thread. |
Is there any progress on this? |
LinearI would like Linear as an OAuth Provider Documentation: https://developers.linear.app/docs/oauth/authentication |
@Mutondi I have started working on it, currently I am looking into how I can extend the database schema in order to store the additional information required for genericity, such as the field mapping. I could use this extension myself in February 2024. So if you have the time to test the feature with your own provider once I open the PR, that would be great news. Edit: See #1372 for the PR. |
Is there an ETA for Steam as an Auth Provider? Or even a Custom Provider option? |
Support Zitadel as a providerPlease consider adding support for ZITADEL. I see there is already KeyCloak support, so I could try to copy that for Zitadel, as in most instances Zitadel drops in as a replacement pretty fine as both are OIDC compliant and common self-hosted open source Identity Providers. I am not sure if I should hold off on it based on the comment in the CONTRIBUTING.md. Let me know if I should go ahead and work on this. But I did also find this in the code so maybe I don't need to do this after all?: Still happy to do the work, just need a little guidance 🙏 |
|
@Mutondi, @rohanliston, @kangmingtay, @bdelwood, @James3UK, @sannajammeh, @bluengreen, @jessebot, @chrisjh, @agrantdeakin, @mstade, @WildEgo, @kermado, @JoaquimLey, @naohiro-t, @BayTec, @jamiefolsom, @point-source, @Whats-A-MattR and everyone else who has mentioned or reacted to a generic OAuth provider: I have implemented a first version of a generic OAuth provider at #1372. If you have the means, it would help a great deal if you could test it with some real-life identity providers (even ones which are already supported by gotrue would help). I have so far tested it using an application of my own. But the more we can test this new all-purpose OAuth provider the merrier. |
|
add miniOrange as OAuth Provider |
|
Would love to see Yahoo in the list of auth providers. Would make accessing the Yahoo Fantasy API so much better. |
|
Is there any progress on the generic OAuth provider, is possible submit PR that adds another social login provider? |
Any feedback on adding Yahoo oauth? |
Epic as OAuth providerSaw this request in the discussions and thought I will bump it by posting it here as well. Would be great to see this feature being added! |
Support Instagram as an external OAuth ProviderCurrently, Supabase does not support Instagram as an external OAuth provider, although it does support Facebook. I understand that the flow would be very similar. Describe the solution you'd likeSupport Instagram as an external OAuth Provider. More here. Thanks! |
Support LINE as a providerLINE is a dominant IM app mainly in East Asia. The social login is widely used, and there are many people who want to use it with Supabase Auth. LINE's user numbers in different countries as of 2024 are as follows:
Other notable statistics:
Official document (ENG): https://developers.line.biz/en/docs/line-login/overview/ |
Support NAVER as a providerPlease consider adding NAVER auth sign in provider. Official docs : https://developers.naver.com/products/login/api/api.md |
Support GitHub Apps as providerBoth OAuth apps and GitHub Apps use OAuth 2.0. |
|
I'd love to see Gitlab SELFHOSTED as an option for an auth provider. |
I'm not sure that would serve the purpose of the project. That would only be useful for internal use cases, unless you're going to write it and submit a PR I can't see time being spent on this. Sorry to be blunt. |
Heya, Matt! There's already a Gitlab provider, I'd expect that the only difference between the two is the endpoint. Gitlab encourages self-hosting. While many selfhosted rigs don't use legitimate ssl certs, the vast majority do. If it were truly that simple, I disagree with your assertion that it would serve the purpose of the project. if it were NOT that simple, (I don't know, with confidence, one way or the other, quite honestly.) I can concede the point that time/energy spent likely aren't worth the effort. However, assuming it is that simple, (hey, gotta be optimistic sometimes, right?) I don't see much of a downside... altho admittedly I'm likely missing some significant facet of complication due to ignorance ;) so... can you help me understand what I'm missing? :) |
|
The main thing I would suggest may prevent this is that the package is focused on Social Auth. ie. Everyone can have a Facebook account, or a Twitter Account, or Google, or x ,y ,z, etc. and if the developer chooses, they can use those services to authenticate. Hope that makes sense. |
Heya Matt! First, thanks for talking about it :) I appreciate the gift of your time and energy. Thank you. I think this might be where our lenses diverge... I'll elucidate my perspective... my intent is not to argue or assert that one or the other is more 'right'.... Rather just trying to express the logic behind my reasoning.. (or what passes for logic between these ears ;) ) As I see it, The package is focused on facilitating external auth for a tool.
Now, a vast majority of users will absolutely lean on ubiquitously-accessible services to provide those tokens, as such, I wholly agree with you that this functionality will only increase the utility derived from the tool for a small cohort of users. However, that doesn't mean that there's no value in the ability to additionally support variant-instantiations of those ubiquitously-available services' facades for less-ubiquitously-available auth-brokers. Nevertheless, Is the use-case for I'd think that's kinda short-sighted, in that The audience diversity of Allowing customers to use their on-prem services to legitimize their users seems like a thing that devs would derive value from, rather than being burdened by.... I was simply figuring that an upside would be a reduction in external network traffic, latencies around auth, as well as greater flexibility offered to app devs to subsequently offer to their customers.. ¯\_(ツ)_/¯ So.. that's the lens I was using when proposing this... |
Yeah, quite burdensome - especially when each installation may differ and having to support different environments complicates things greatly.
The issue I foresee isn't related to cloud or no, it's purely around number of uses that will make use of it.
Completely correct, agreed.
Only in terms of priority, very few users would equate to low priority.
I think there is a slight miscommunication in my message. I am not saying that such an integration would be useless, more than because of the specificity of it's nature and the small cohort that may end up using this, allocating dev time may be a difficult ask. I completely agree there is value in it, but it's substantially less value than a larger, less bespoke integration (bespoke in that there are many more variables for the IdP environment etc. despite being ~ hopefully ~ very similar to the cloud version). I think dev time would be better spent on 'generic' and extensible connectors rather than bespoke solutions for on prem. |
|
concur on all. Glad to have interacted ;) Thanks for your perspective and input... Totes agree on priority, too. I was mostly just adding the request as if it's not made, there's no way for y'all to gauge interest Thanks for reducing toil for devs. Its appreciated. ❤️🐺w |
and others
This issue is for tracking requests/demand for integration with External OAuth Providers. Give a comment a thumbs up if you want the connector built or drop a comment if you wish to work on any of the providers below.
We will prioritise providers based on the number of upvotes/thumbs up so do upvote your favourite providers
The text was updated successfully, but these errors were encountered: