Hey there,

I’d like to allow users in a specific group (not the admin group) to create invites for Authentik, so that people at my hackerspace can invite others to our Single Sign-On system.

Has anyone got a recommendation or idea how this could be done?

We also have a Nextcloud instance, maybe there’s a simple tool that allows Nextcloud users to trigger an API call without revealing any API secret?

All we need is an input field that forces users to note who the invite is for and a button that allows creating it and receiving a link.

    • erebion@lemmy.sdf.orgOP
      link
      fedilink
      English
      arrow-up
      1
      arrow-down
      1
      ·
      edit-2
      7 months ago

      Nope. Not what the question is about. This requires an admin user to create an invitation in the admin backend. I want a way to let users do that.

      • just_another_person@lemmy.world
        link
        fedilink
        English
        arrow-up
        6
        ·
        7 months ago

        It literally links you to the yaml to configure the type of policy you’re asking about. If you’re expecting them to have a toggle or some GUI to do it for you, I don’t believe you’re going to find that.

        • erebion@lemmy.sdf.orgOP
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          7 months ago

          I already have an invite flow that users will arrive at and go through when signing up, now I want to let users create invites for other users. That page does not mention anything about that. It seems to be about adding a flow that asks user for details such as an email address and then they get their account.

          In my case users have already gone through that and want to invite someone else.

          With invitations, you can either email an enrollment invitation URL to one or more specific recipients with pre-defined credentials, or you can email a URL to users, who can then log in and define their own credentials.

          I already have enrollment invitation URLs. Just not automatically. I wrote a script that uses the API for that purpose.

          The docs even mention this about the flow:

          Enrollment (2 Stage)

          Flow: right-click here and save the file.

          Sign-up flow for new users, which prompts them for their username, email, password and name. No verification is done. Users are also immediately logged on after this flow.