I’m using Authentik at home and it’s great, I have single login (secured with 2FA and/or secure key) for all my home services but I can’t integrate Home Assistant, so I have to use legacy password authentication then generate key in 2FA auth. and rewrite it.
It would be great if Home Assistant would have Single Sign On option: SAML or oAuth.
Thanks!
This also requires the mobile apps to be updated to support this.
I’d really like to integrate it with Authelia via Oauth indeed.
I think apps can handle this pretty generically by popping out to a webview
I am hosting my own LDAP server.
I wrote a Home Assistant Add-On (not published) to run a simple python script that talks to a LDAP server. I had to create the Add-on because I got tired of doing apk install python3-ldap or some such command and using a Script to do the login.
It uses Authentication providers - Home Assistant
But I agree, that was a lot of work just to get LDAP to work and would love for a way to allow external Authentication.
I would love this, OIDC, OAuth and others are no longer for large enterprises only. It’s so easy these days to put all your self-hosted apps behind a single login portal reusing the same MFA for access from the internet and all that.
I absolutely want this, it would radically simplify my identity management at home. Not for everyone I’m sure, but the fact it’s been actively ignored by the development group for at least 2 years and it appears a lot longer, doesn’t bode well that they even consider this as something they want to do. Very disappointing.
Yup there definitely needs to be an option for SSO. So many other self-hosted projects have it and HomeAssistant is the odd man out. I host a lot of stuff my family uses and it’s all tied together with SSO, which makes their lives a lot easier and it betters our security posture.
This would be so useful, just set up authelia and now i found out my homeassistant doesnt even support oAuth
This feature wouldn’t be for every user, but I think that’s fine.
Why The H can’t we configure HA to use a external authentication system? I’d be thrilled for OIDC to be natively supported by HA, just as thrilled if HA would properly support for an addon or integration to provide a bridge to one (With HA offering the necessary APIs).
Putting a reverse proxy infront of HA is not a solution, as this breaks the App, not to mention that with this you need to login twice.
Merged into the existing topic to avoid splitting the votes 