VladPolskiy/BookLore
1
0
Fork 0
mirror of https://github.com/adityachandelgit/BookLore.git synced 2025-07-22 00:35:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
develop
BookLore/docs/OIDC-Setup-With-PocketID.md
danblu3 5f72c9a01f Updating naming to BookLore and some formatting
2025-06-29 16:10:48 -06:00

2.9 KiB
Raw Permalink Blame History

OIDC Setup With Pocket ID

A quick rundown of the technologies

What is Pocket ID?

Pocket ID is a simple OIDC provider that allows users to authenticate with their passkeys to your services.

The goal of Pocket ID is to be a simple and easy-to-use. There are other self-hosted OIDC providers like Keycloak or ORY Hydra but they are often too complex for simple use cases.

Additionally, what makes Pocket ID special is that it only supports passkey authentication, which means you dont need a password.

What is OAuth2?

OAuth2 (Open Authorization 2.0) is an industry-standard protocol for authorization. It allows applications (clients) to gain limited access to user accounts on an HTTP service without sharing the users credentials. Instead, it uses access tokens to facilitate secure interactions. OAuth2 is commonly used in scenarios where users need to authenticate via a third-party service.

What is OpenID Connect (OIDC)?

OIDC (OpenID Connect) is an identity layer built on top of OAuth2. While OAuth2 primarily handles authorization, OIDC adds authentication, enabling applications to verify a users identity and obtain profile information. This makes OIDC suitable for SSO solutions, where user identity is central to access management.

Setting up a client in Pocket ID

Step 1: Install and Configure Pocket ID

Before setting up the OIDC client, ensure that Pocket ID is installed and running by following the setup guide.

Step 2: Add a client

Once you have logged in and configured a PassKey you now need to create an OIDC client, this will let Pocket ID know about the application that needs to be configured, and will give you the relevant keys to add to the BookLore settings dialogue

  • Login to PocketID
  • Go to OIDC Clients on the left side bar
  • Click Add OIDC Client
    • Name: BookLore [Can be anything you want]
    • Callback URLs: https://{host}/oauth2-callback
  • Tick Public & PKCE (This is required for BookLore to correctly authenticate with the client)
  • Copy your Client ID to use later.
  • Click show more details and copy the Certificate URL to use later
  • Click Save

Step 3: Configure BookLore OIDC Settings

To enable OIDC authentication in BookLore, you need to set the following within the application:

  • Navigate to the settings cog at the top of the page
  • Provider name - PocketID
  • Client ID - Copied in Step 2
  • Issuer URI - This is the URL where your MAIN page of PocketID is (id.host.com for example)
  • JWKS URL - Copied in step 2
  • Leave the rest default
  • Click Save

Step 4: Test the Integration

Once configured, simply click Save Settings and then click the Enabled radio button to activate it. Simply log out and log back in and you should be working with no issues! Any issues please raise an issue on the Github