Mobilizon is an online tool to help manage your events, your profiles and your groups.
Mobilizon lets users authenticate with OpenID Connect through the same plugin used by Keycloak.
First, make sure you have set up LemonLDAP::NG ‘s OpenID Connect service and added a Relaying Party for your Mobilizon instance
The only options you need to configure are:
Edit /etc/mobilizon/config.exs, and adjust the Client ID, Client Secret and URLs to match your domain
config :ueberauth,
Ueberauth,
providers: [
keycloak: {Ueberauth.Strategy.Keycloak, [default_scope: "openid profile email"]}
]
config :mobilizon, :auth,
oauth_consumer_strategies: [
{:keycloak, "LemonLDAP::NG"}
]
config :ueberauth, Ueberauth.Strategy.Keycloak.OAuth,
client_id: "CHANGEME",
client_secret: "CHANGEME",
site: "https://auth.example.com",
authorize_url: "https://auth.example.com/oauth2/authorize",
token_url: "https://auth.example.com/oauth2/token",
userinfo_url: "https://auth.example.com/oauth2/userinfo",
token_method: :post