authentik/website/integrations/services/gitea/index.md

---
title: Gitea
---

## What is Gitea

From https://gitea.io/

:::note
Gitea is a community managed lightweight code hosting solution written in Go. It is published under the MIT license.
:::

:::note
This is based on authentik 2021.10.3 and Gitea 1.16.0+rc1 installed using https://docs.gitea.io/en-us/install-from-binary/. Instructions may differ between versions.
:::

## Preparation

The following placeholders will be used:

-   `authentik.company` is the FQDN of authentik.
-   `gitea.company` is the FQDN of Gitea.

### Step 1

In authentik, create an _OAuth2/OpenID Provider_ (under _Resources/Providers_) with these settings:

:::note
Only settings that have been modified from default have been listed.
:::

**Protocol Settings**

-   Name: Gitea
-   Signing Key: Select any available key

:::note
Take note of the `Client ID` and `Client Secret`, you'll need to give them to Gitea in _Step 3_.
:::

### Step 2

In authentik, create an application (under _Resources/Applications_) which uses this provider. Optionally apply access restrictions to the application using policy bindings.

:::note
Only settings that have been modified from default have been listed.
:::

-   Name: Gitea
-   Slug: gitea-slug
-   Provider: Gitea

### Step 3

Navigate to the _Authentication Sources_ page at https://gitea.company/admin/auths and click `Add Authentication Source`

Change the following fields

-   Authentication Name: authentik
-   OAuth2 Provider: OpenID Connect
-   Client ID (Key): Step 1
-   Client Secret: Step 1
-   Icon URL: https://raw.githubusercontent.com/goauthentik/authentik/master/web/icons/icon.png
-   OpenID Connect Auto Discovery URL: https://authentik.company/application/o/gitea-slug/.well-known/openid-configuration
-   Additional Scopes: `email profile`

![](./gitea1.png)

`Add Authentication Source` and you should be done. Your Gitea login page should now have a `Sign in With` followed by the authentik logo which you can click on to sign-in to Gitea with Authentik creds.
website/docs: Add Integrations/Provider/Gitea (#1781) 2021-11-11 22:23:32 +00:00			`---`
			`title: Gitea`
			`---`

			`## What is Gitea`

			`From https://gitea.io/`

			`:::note`
			`Gitea is a community managed lightweight code hosting solution written in Go. It is published under the MIT license.`
			`:::`

			`:::note`
website/integrations: update gitea integration documentation (#2182) Newer gitea versions now expose "additional OIDC mapping" to admin GUI. The configuration file change required in previous versions can now be done in the GUI. 2022-02-06 14:17:52 +00:00			`This is based on authentik 2021.10.3 and Gitea 1.16.0+rc1 installed using https://docs.gitea.io/en-us/install-from-binary/. Instructions may differ between versions.`
website/docs: Add Integrations/Provider/Gitea (#1781) 2021-11-11 22:23:32 +00:00			`:::`

			`## Preparation`

			`The following placeholders will be used:`

website: format docs with prettier (#2833) * run prettier Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add scim to comparison Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2022-05-09 19:22:41 +00:00			- `authentik.company` is the FQDN of authentik.
			- `gitea.company` is the FQDN of Gitea.
website/docs: Add Integrations/Provider/Gitea (#1781) 2021-11-11 22:23:32 +00:00
			`### Step 1`

			`In authentik, create an _OAuth2/OpenID Provider_ (under _Resources/Providers_) with these settings:`

			`:::note`
			`Only settings that have been modified from default have been listed.`
			`:::`

			`Protocol Settings`
website/integrations: cleanup Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2021-12-22 20:46:46 +00:00
website: format docs with prettier (#2833) * run prettier Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add scim to comparison Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2022-05-09 19:22:41 +00:00			`- Name: Gitea`
			`- Signing Key: Select any available key`
website/docs: Add Integrations/Provider/Gitea (#1781) 2021-11-11 22:23:32 +00:00
			`:::note`
website/docs: Mention correct logo in Gitea docs (#1782) 2021-11-12 00:02:17 +00:00			Take note of the `Client ID` and `Client Secret`, you'll need to give them to Gitea in _Step 3_.
website/docs: Add Integrations/Provider/Gitea (#1781) 2021-11-11 22:23:32 +00:00			`:::`

			`### Step 2`

			`In authentik, create an application (under _Resources/Applications_) which uses this provider. Optionally apply access restrictions to the application using policy bindings.`

			`:::note`
			`Only settings that have been modified from default have been listed.`
			`:::`

website: format docs with prettier (#2833) * run prettier Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add scim to comparison Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2022-05-09 19:22:41 +00:00			`- Name: Gitea`
			`- Slug: gitea-slug`
			`- Provider: Gitea`
website/docs: Add Integrations/Provider/Gitea (#1781) 2021-11-11 22:23:32 +00:00
			`### Step 3`

			Navigate to the _Authentication Sources_ page at https://gitea.company/admin/auths and click `Add Authentication Source`

			`Change the following fields`

website: format docs with prettier (#2833) * run prettier Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add scim to comparison Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2022-05-09 19:22:41 +00:00			`- Authentication Name: authentik`
			`- OAuth2 Provider: OpenID Connect`
website/integrations: Fix Gitea integration manual steps (#2910) 2022-05-20 14:47:39 +00:00			`- Client ID (Key): Step 1`
			`- Client Secret: Step 1`
website: format docs with prettier (#2833) * run prettier Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add scim to comparison Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> 2022-05-09 19:22:41 +00:00			`- Icon URL: https://raw.githubusercontent.com/goauthentik/authentik/master/web/icons/icon.png`
			`- OpenID Connect Auto Discovery URL: https://authentik.company/application/o/gitea-slug/.well-known/openid-configuration`
			- Additional Scopes: `email profile`
website/docs: Add Integrations/Provider/Gitea (#1781) 2021-11-11 22:23:32 +00:00
			`![](./gitea1.png)`

website/integrations: update gitea integration documentation (#2182) Newer gitea versions now expose "additional OIDC mapping" to admin GUI. The configuration file change required in previous versions can now be done in the GUI. 2022-02-06 14:17:52 +00:00			`Add Authentication Source` and you should be done. Your Gitea login page should now have a `Sign in With` followed by the authentik logo which you can click on to sign-in to Gitea with Authentik creds.