Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [oauth]

83 questions
14
votes
2 answers

Is there any solution to make OpenVPN authentication with Google ID?

Or, maybe any oauth? All I could find - is 2factor authentication with google. But I'd like to use Google Apps base for OpenVPN auth. I believe that it is possible to make something like gitlab. Where you can put your certificate and then use it…
Psychozoic
  • 273
  • 2
  • 4
  • 13
11
votes
2 answers

Service account does not have storage.buckets.get access to bucket

I'm trying to get a list of buckets in a project, using python like this: from google.cloud import storage storage_client = storage.Client(project='[project-id]') bucket = storage_client.get_bucket([bucket-name]) blobs = bucket.list_blobs() for…
Dimitri
  • 211
  • 1
  • 2
  • 4
8
votes
2 answers

How do I access a google cloud storage bucket using a service account from the command line?

I thought it would be pretty straight forward to do this, but I can't get it to work: I'm trying to push files from a server (GCE) to a google cloud storage bucket. To avoid granting the gsutil command on the server too many rights, I have created a…
bjoseru
  • 83
  • 1
  • 1
  • 6
6
votes
1 answer

Support for refresh tokens in ADFS 2.2 OAuth flow

My colleague and I are trying to enable OAuth in ADFS 2.2. Everything is working except the server only passes back an access token (w/ expiration) and does not include a refresh token after successful login. There is very little documentation on…
Matt Dearing
  • 113
  • 1
  • 6
5
votes
2 answers

How to allow login to a SMTP server better than with password?

I'm planning on creating a mail server, but I don't want to use passwords at all. They seem a wrong security choice to me. I'd love to use a certificate to login. This seems easy to do in HTTP, but I found no way to do it in SMTP. Is there any way…
Yajo
  • 292
  • 2
  • 3
  • 8
5
votes
0 answers

How can I connect to an Exchange 2013 server with OAuth?

Our goal is to have our customers grant permission to access their email on an Exchange 2013 server with OAuth, without us having to store the customers' usernames and passwords. We already do this for Gmail and it works well and is easy. I'm…
Wolfram Arnold
  • 185
  • 6
4
votes
3 answers

Is there a way to setup oAuth with Openvpn or wireguard?

I'm looking to build a set of services that require a single sign on. Basically, you login to my oAuth provider, and you have access to an openvpn connection(or wireguard) and a website, without additional security needed, with the possible…
SoftwareRocks
  • 41
  • 1
  • 3
3
votes
1 answer

Why Domain Admin Cannot Enable Domain Wide Delegation for Service Accounts?

We need to use service accounts for our application instead of individually end users to call some Google Apis such as Admin Directory Api. There are 3 members of this project which are me as owner, our domain admin as service account admin and…
AshleyCam
  • 31
  • 1
  • 2
3
votes
1 answer

ADFS: Convert SAML Assertion to OAuth Token?

We have Microsoft Active Directory Federation Services (ADFS) as our authentication/federation provider. We use it for performing identity federation via SAML to several external vendors, SaaS providers, etc. In addition, we have several vendors…
Shadowman
  • 71
  • 1
  • 8
3
votes
0 answers

IIS - How to force Windows Authentication first then fall back to Anonymous Authentication

I have a website running on IIS, it works on Windows Authentication (intranet ActiveDirectory), and I am planning to open it to Internet with token-based OAuth (anonymous authentication). In my expectation, the website will first challenge the user…
Miles Fan
  • 31
  • 4
3
votes
0 answers

Setting up oauth for JIRA 6.4

I want to setup oauth for third party application to log jira issues in jira 6.4. I am familiar with twitter oauth process. But looking at jira oauth, its taking too much time. I have been able to create external application link so far. I have the…
codeofnode
  • 143
  • 1
  • 9
3
votes
2 answers

How do I Generate a Bearer Token for cURL to Get Thru IAP (GCP)?

I need to cURL a web app hosted behind IAP on GCP. Normally, users log in through IAP and use the web app, but I need to run some cURL commands (interactive and non-interactive) that hit the web app URLs (for example: …
sts
  • 115
  • 2
  • 16
3
votes
0 answers

Domains have been verified, but Google still says app has not been verified

Message in the consent screen settings: Comply with domain verification requirements Ensure your application's domains have completed the Search Console verification process But... all my domains on the search console have been verified. What can…
Victor Alisson
  • 31
  • 1
3
votes
1 answer

Exclude specific web page from access restrictions with GCP / IAP

I have a Node.js/Express web app running on the Google Cloud Platform App Engine. I'm restricting access to this application using the Identity Aware Proxy (IAP), so that only people in my company can access the website when they are logged on to…
Patrick Hund
  • 133
  • 5
3
votes
1 answer

Intermittent OpenID Connect login error in ADFS 4.0

We have a Windows 2016 ADFS 4.0 farm (WID database, not SQL Server) hosted in Azure. We are working with a new OpenID Connect application, and want to use ADFS to authenticate and populate user profiles from AD. The application is using a shared…
RyanM
  • 41
  • 4
1
2 3 4 5 6