relja
relja
PostsComments
CCoder.com
Created by relja on 3/28/2024 in #help
Authentication within Coder workspaces
Again, I have the same issue, where the pop-up which is supposed to log me into zitadel, is just blank. I checked the logs of the pop-up. Request to https://<coder-domain>/api/v2/external-auth/zitadel-testing returns 500 code. Validation endpoint: https://<zitadel-domain>/oidc/v1/userinfo
13 replies
CCoder.com
Created by relja on 3/28/2024 in #help
Authentication within Coder workspaces
Okay, so this seems to work, however there are some hiccups. I've created a web app in Zitadel, and integrated Coder workspaces as you mentioned. I can obtain the valid (refreshed) access token by running the following in workspace 
curl "${CODER_AGENT_URL}"'api/v2/workspaceagents/me/external-auth?id=zitadel-testing' -H "Coder-Session-Token: ${CODER_AGENT_TOKEN}"
curl "${CODER_AGENT_URL}"'api/v2/workspaceagents/me/external-auth?id=zitadel-testing' -H "Coder-Session-Token: ${CODER_AGENT_TOKEN}"
I've also put 
data "coder_external_auth" "zitadel-testing" {
  id = "zitadel-testing"
}
data "coder_external_auth" "zitadel-testing" {
  id = "zitadel-testing"
}
inside the template, to force user to authenticate prior to workspace creation. I don't know how else to force user to authenticate? This works fine the first time, however, the next day when I try to create another workspace the button isn't there anymore. If I create the workspace without authentication nontheless, build fails 
Workspace build failed
refresh external auth link "zitadel-testing": validate external auth token
Workspace build failed
refresh external auth link "zitadel-testing": validate external auth token
Regarding yesterdays problem, I was only able to solve it by completely re-installing coder and crucially, wiping the database clean !
13 replies
CCoder.com
Created by relja on 3/28/2024 in #help
Authentication within Coder workspaces
Hey @Atif , I'm testing this right now. It worked on Friday, however now when I try to login prior to workspace creation the pop-up is stuck, not showing "Successful login" text. Also, token wasn't being refreshed on Friday either. I'll keep you posted ! PS: I think it's a great idea to document this, because from the External Auth docs I've read, it wasn't clear to me that workspace auth integrates with every OAuth provider. I thought only GitHub, GitLab, BitBucket & Azure DevOps were supported.
13 replies
CCoder.com
Created by relja on 3/28/2024 in #help
Authentication within Coder workspaces
Hey, sorry for the late response, I was on vacation. The docs you've linked talk about integration with external auth providers, specifically the section you mentioned seems to talk about git. However, we are using Zitadel, and would like to authenticate against it, and fetch the access token, but it is not listed as one of the supported providers? Am I missing something? How would you suggest I integrate Zitadel and Coder workspace?
13 replies