dahjah/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2026-06-03 13:55:01 -06:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

Updated SSO Docs according to information gathered in the discussion #7073

Saphira Mathis 2026-04-10 12:06:21 +02:00
parent d304defb2e
commit acb669b40c
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
Enabling-SSO-support-using-OpenId-Connect.md

@ -31,6 +31,8 @@ The following configurations are available
The callback URL is [automatically generated](https://github.com/dani-garcia/vaultwarden/blob/1e1f9957cd037fad87e5cd33245720f865942016/src/config.rs#L1333) from the `DOMAIN`. If you set `DOMAIN=https://vaultwarden.example.tld` your callback URL will be `https://vaultwarden.example.tld/identity/connect/oidc-signin`.
If you are using a private certificate authority or self signed certificates on your SSO authority, you need to add your root certificate to `/etc/ssl/certs` or point the `SSL_CERT_DIR` or `SSL_CERT_FILE` environment variables to it.
## Account and Email handling
When logging in with SSO an identifier (`{iss}/{sub}` claims from the IdToken) is saved in a separate table (`sso_users`).