2021-11-22 21:55:14 +00:00
|
|
|
---
|
|
|
|
title: HedgeDoc
|
|
|
|
---
|
|
|
|
|
2022-06-15 19:31:34 +00:00
|
|
|
<span class="badge badge--secondary">Support level: Community</span>
|
|
|
|
|
2021-11-22 21:55:14 +00:00
|
|
|
## What is HedgeDoc
|
|
|
|
|
2023-07-31 10:16:58 +00:00
|
|
|
> HedgeDoc lets you create real-time collaborative markdown notes.
|
|
|
|
>
|
|
|
|
> -- https://github.com/hedgedoc/hedgedoc
|
2021-11-22 21:55:14 +00:00
|
|
|
|
|
|
|
## Preparation
|
|
|
|
|
|
|
|
The following placeholders will be used:
|
|
|
|
|
2022-05-09 19:22:41 +00:00
|
|
|
- `hedgedoc.company` is the FQDN of the HedgeDoc install.
|
|
|
|
- `authentik.company` is the FQDN of the authentik install.
|
2021-11-22 21:55:14 +00:00
|
|
|
|
2023-03-18 18:29:51 +00:00
|
|
|
Create an OAuth2/OpenID provider with the following parameters:
|
2021-11-22 21:55:14 +00:00
|
|
|
|
2022-05-09 19:22:41 +00:00
|
|
|
- Client Type: `Confidential`
|
|
|
|
- Scopes: OpenID, Email and Profile
|
|
|
|
- Signing Key: Select any available key
|
|
|
|
- Redirect URIs: `https://hedgedoc.company/auth/oauth2/callback`
|
2021-11-22 21:55:14 +00:00
|
|
|
|
|
|
|
Note the Client ID and Client Secret values. Create an application, using the provider you've created above.
|
2023-03-18 18:29:51 +00:00
|
|
|
To be logged in immediately if you click on the application, set:
|
|
|
|
|
|
|
|
- Launch URL: `https://hedgedoc.company/auth/oauth2`
|
2021-11-22 21:55:14 +00:00
|
|
|
|
|
|
|
## HedgeDoc
|
|
|
|
|
|
|
|
You need to set the following `env` Variables for Docker based installations.
|
|
|
|
|
|
|
|
Set the following values:
|
|
|
|
|
|
|
|
```yaml
|
2022-05-09 19:22:41 +00:00
|
|
|
CMD_OAUTH2_PROVIDERNAME: "authentik"
|
|
|
|
CMD_OAUTH2_CLIENT_ID: "<Client ID from above>"
|
|
|
|
CMD_OAUTH2_CLIENT_SECRET: "<Client Secret from above>"
|
|
|
|
CMD_OAUTH2_SCOPE: "openid email profile"
|
|
|
|
CMD_OAUTH2_USER_PROFILE_URL: "https://authentik.company/application/o/userinfo/"
|
|
|
|
CMD_OAUTH2_TOKEN_URL: "https://authentik.company/application/o/token/"
|
|
|
|
CMD_OAUTH2_AUTHORIZATION_URL: "https://authentik.company/application/o/authorize/"
|
|
|
|
CMD_OAUTH2_USER_PROFILE_USERNAME_ATTR: "preferred_username"
|
|
|
|
CMD_OAUTH2_USER_PROFILE_DISPLAY_NAME_ATTR: "name"
|
|
|
|
CMD_OAUTH2_USER_PROFILE_EMAIL_ATTR: "email"
|
2021-12-22 20:46:46 +00:00
|
|
|
```
|