Feature #37363


Add native support for OIDC

Added by Daniel Jann almost 2 years ago. Updated 3 months ago.

Accounts / authentication
Target version:
Start date:
Due date:
% Done:


Estimated time:


Considering that:
  • Support for OpenID has been dropped (see #35755)
  • The only OIDC plugin only supports version 3.4.x of redmine

There is currently no way to implement SSO in current and future versions of redmine, other than creating a custom plugin, which certainly requires in-depth knowledge of ruby on rails, putting it out of reach of many.

I'm sure it would be useful to many of us redmine administrators to have redmine natively support OIDC.

Actions #1

Updated by Christoffer Rumohr almost 2 years ago

Well there is a plugin for Redmine v5 but with no clear direction regarding the development.

See: #35755#note-13

In my opinion a native Integration is an absolute must when it comes to the future of Redmine.

Actions #2

Updated by Felix Singer almost 2 years ago

I agree. Redmine would benefit from a native OIDC implementation. Maybe also add support for different OAuth2 providers, like Github, Gitlab or Google.

Actions #3

Updated by Quentin Aymard 6 months ago

Update one year later :

This lack of "modern" (OIDC is almost 10 years old already) auth protocols is really holding Redmine back : 2FA support is recent and very partial, password-strenght controls are unreliable, passkeys are nowhere to be seen in the upcoming v5/v6 features, etc.

Having native, standard OIDC support in Redmine like never before an absolute must-have. Any modern web app should avoid internal/ldap authentication, and rather use native OIDC support, paired with a dedicated identity provider (eg. Keycloak) which then can provide identity federation features from LDAP, AD, internal database, or other Oauth identity providers, but also security feature like MFA, passkeys, passwork rotation and strenght enforcement, etc.


Also available in: Atom PDF