Login UI options
The login UI adapts to the options you set in the values.yml
when deploying Spider.
You may:
- Activate user creation form
- Activate reset password form
- Activate login with LDAP
- Activate one or more external Identity Providers (SSO)
User creation form
The form is activated with this option in the values.yml
.
It adds a link and a screen in the login page to allow account creation.
The creation form:
Reset password form
The form is activated with this option in the values.yml
.
It adds a link and a screen in the login page to allow resetting a password for a user.
Reset password form:
A mail is sent to the user whose mail is valid, with a link to provide a new password.
This link includes a limited time token.
LDAP login
User authentication may be offloaded to an external and existing LDAP.
This feature is activated with this option in the values.yml
.
On the login screen, a message informs the user that he may connect using his LDAP account.
Any valid user connecting without an account would trigger an account creation.
SSO or social login with OpenId Connect
User authentication may be offloaded to an external and existing Identity Provider using OpenId Connect.
This one might be a social network (like Google), a developer network (Gilab, Github) or any other Identity Provider.
It may also be a local IP like Keycloak to manage SSO between your on premise tools.
This feature is activated with this option in the values.yml
.
On the login screen, a message informs the user it may log with his existing external accounts, and a button is added for each provided IP.
Any valid user connecting without an account would trigger an account creation.