Oidc plug-in to integrate GoCD with Azure AD

[anil kumar]

Hello,

Could you please guide me, do we have any OIDC plug-in to integrate GoCD server with Azure AD or Entra ID for oidc Authentication and Authentication?

If yes, could you please provide me the steps.

Thanks in advance

[Chad Wilson]

There is no plugin I am aware of that is specific to Azure, nor is there a "generic" OIDC/OAuth2 plugin that can be configured to work across various arbitrary identity provider/authorization servers.

There are generic LDAP plugins via https://github.com/gocd/gocd-ldap-authentication-plugin and https://github.com/gocd/gocd-ldap-authorization-plugin but these are not specific to AD, and I believe Azure AD/Entra ID only supports LDAP via some hijinx as documented at https://learn.microsoft.com/en-us/entra/architecture/auth-ldap . I'm not sure if this is a good solution and not aware of anyone trying it.

An alternative would be to write an Azure/Entra ID specific OIDC/OAuth2 GoCD plugin yourself, using one of the existing plugins to model from. The difficulty in doing this probably depends whether you want just authentication/identity support or also want support to map Azure-managed roles automatically to GoCD roles for users (alongside the Java dev capacity available to you, and your knowledge of OIDC/OAuth2).

-Chad

--
You received this message because you are subscribed to the Google Groups "go-cd" group.
To unsubscribe from this group and stop receiving emails from it, send an email to go-cd+un...@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/go-cd/CALhvTWpH-KXDT2qRgZhpU%3DarP5Tb4a1Nm1t9fvOVnTT0Zmimfw%40mail.gmail.com.