With the new oauth2 extension, Marketing Factory created an innovative way to enable cross-system user management. By installing oauth2, times of passwort rotations for customers and employees are finally over.
User and user right management can be pretty challenging when working with TYPO3. Most customers have a variety of different employee groups with individual needs in terms of backend user rights. Additionally, our developers need administrative rights to be able to configure extensions, analyse errors or – on a base level – to simply maintain the installation. If multiple development systems are needed in addition to that – user and user right management can easily become quite tricky.
On the occasion of the TYPO3 Developer Days 2018, our TYPO3 developers Christian Spoo, Simon Schmidt and Christian Hellmund decided to create a generic OAuth 2.0 connection to the TYPO3 backend. They primarily integrated GitLab – to fit our own everyday needs. However, the extension can easily be connected to any OAuth 2.0 compatible services.
After installing and configuring the extension, backend users will see an additional "log in with GitLab" button underneath the well-known username + password combo slots. Clicking that button directly leads the users to the GitLab log in screen. Once logged in, the user gets automatically redirected into the TYPO3 backend. Note: This "double log in process" is only required once daily / once per running GitLab session.
The extension has been published and is available here.