feat(sso): allow to use OIDC and SAML (#7246)

## What it does ### Backend - [x] Add a mutation to create OIDC and SAML configuration - [x] Add a mutation to delete an SSO config - [x] Add a feature flag to toggle SSO - [x] Add a mutation to activate/deactivate an SSO config - [x] Add a mutation to delete an SSO config - [x] Add strategy to use OIDC or SAML - [ ] Improve error management ### Frontend - [x] Add section "security" in settings - [x] Add page to list SSO configurations - [x] Add page and forms to create OIDC or SAML configuration - [x] Add field to "connect with SSO" in the signin/signup process - [x] Trigger auth when a user switch to a workspace with SSO enable - [x] Add an option on the security page to activate/deactivate the global invitation link - [ ] Add new Icons for SSO Identity Providers (okta, Auth0, Azure, Microsoft) --------- Co-authored-by: Félix Malfait <felix@twenty.com> Co-authored-by: Charles Bochet <charles@twenty.com>
2024-10-21 20:07:08 +02:00
parent 11c3f1c399
commit 0f0a7966b1
132 changed files with 5245 additions and 306 deletions
--- a/packages/twenty-server/src/engine/core-modules/environment/environment-variables.ts
+++ b/packages/twenty-server/src/engine/core-modules/environment/environment-variables.ts
@ -225,6 +225,15 @@ export class EnvironmentVariables {
  @ValidateIf((env) => env.AUTH_GOOGLE_ENABLED)
  AUTH_GOOGLE_CALLBACK_URL: string;

+  @CastToBoolean()
+  @IsOptional()
+  @IsBoolean()
+  AUTH_SSO_ENABLED = false;
+
+  @IsString()
+  @IsOptional()
+  ENTERPRISE_KEY: string;
+
  // Custom Code Engine
  @IsEnum(ServerlessDriverType)
  @IsOptional()
@ -443,6 +452,9 @@ export class EnvironmentVariables {
  @CastToPositiveNumber()
  CACHE_STORAGE_TTL: number = 3600 * 24 * 7;

+  @ValidateIf((env) => env.ENTERPRISE_KEY)
+  SESSION_STORE_SECRET: string;
+
  @CastToBoolean()
  CALENDAR_PROVIDER_GOOGLE_ENABLED = false;