diff --git a/.gitignore b/.gitignore index 9af7b4d..635f2a5 100644 --- a/.gitignore +++ b/.gitignore @@ -22,3 +22,4 @@ yarn-error.log* public/ .DS_Store themes +hugo.toml diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/_index.en.md b/content/self-host/rustdesk-server-pro/oidc/Azure/_index.en.md new file mode 100644 index 0000000..5da1bdc --- /dev/null +++ b/content/self-host/rustdesk-server-pro/oidc/Azure/_index.en.md @@ -0,0 +1,35 @@ +--- +title: Azure +weight: 16 +--- + +## Configuration + +1. Sign in to the [Azure portal](portal.azure.com). +2. Search for and select **Microsoft Entra ID**. +3. In the left menu, select [**App registrations**](https://portal.azure.com/#view/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/~/RegisteredApps), click **New registration**. +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/images/1-Azure-NewRegistration.png) +4. Enter the **Name** and select the **Supported account types**. Enter **Redirect URI**. In the **Redirect URI** section, replace `hbbs host` and `port` with your own, such as `localhost:8000`. +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/images/2-Azure-Register.png) +5. Open the RustDesk Pro console, in the **Settings** page, click the **OIDC** module, and click **New auth provider**. +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/images/3-RustDesk-NewAuthProvider.png) +6. In Azure, select the application you want to use, click **Overview**, and copy the **Application (client) ID**. +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/images/4-Azure-ClientID.png) +7. In RustDesk Pro, copy the **Client id**. +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/5-RustDesk-ClientID.png) +8. In Azure, **Certificates & secrets**, create a new or select a client secret, usually New. +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/6-Azure-NewOrSelectClientSecret.png) +9. In Azure, copy out the value of the client secret. **Note**: This value is only visible when you first register. It is no longer visible after you leave the page. Please keep this value properly. +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/7-Azure-CopySecretValue.png) +10. In RustDesk Pro, paste the value for the client secret. +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/8-RustDesk-FillClientSecret.png) +11. In RustDesk Pro, fill in the **Issuer** field, `https://login.microsoftonline.com//v2.0`. Please replace `Directory (tenant) ID` with your **Directory (tenant) ID**. The **Directory (tenant) ID** is in Azure's app **Overview** panel. +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/9-RustDesk-Issuer.png) +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/10-Azure-TenantID.png) +12. In Azure, select "Authentication" menu. Then set up authorization, by choosing **ID tokens (used for implicit and hybrid flows)**. +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/11-Azure-Auth.png) + +## Refs + +- [openid-settings](https://learn.microsoft.com/en-us/power-pages/security/authentication/openid-settings) +- [v2-protocols-oidc](https://learn.microsoft.com/en-us/azure/active-directory/develop/v2-protocols-oidc) diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/_index.zh-cn.md b/content/self-host/rustdesk-server-pro/oidc/Azure/_index.zh-cn.md new file mode 100644 index 0000000..13b468b --- /dev/null +++ b/content/self-host/rustdesk-server-pro/oidc/Azure/_index.zh-cn.md @@ -0,0 +1,38 @@ +--- +title: Azure +weight: 16 +--- + +## 配置 + +1. 登录 [Azure 门户](portal.azure.com)。 +2. 查找并选择 **Microsoft Entra ID**。 +3. 选择左侧菜单的 [**应用注册**](https://portal.azure.com/#view/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/~/RegisteredApps),点击 **新注册**。 +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/images/1-Azure-NewRegistration.png) +4. 输入 **名称** ,选择 **受支持的帐户类型** 。输入 **重定向 URI**。在 **重定向 URI** 部分, 请将 `hbbs host` 和 `port` 替换为你自己的,如 `localhost:8000`。 +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/images/2-Azure-Register.png) +5. 打开 RustDesk Pro 控制台,进入 **设置** 页,点击 **OIDC** 模块,点击 **New auth provider**。 +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/images/3-RustDesk-NewAuthProvider.png) +6. 在 Azure 中,选择你想使用的应用,点击 **概要**,拷贝 **应用程序(客户端) ID**。 +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/images/4-Azure-ClientID.png) +7. 在 RustDesk Pro 中,复制 **Client id** 。 +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/5-RustDesk-ClientID.png) +8. 在 Azure 中, **证书和密码** ,新建或选择 **客户端密码**,一般是新建。 +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/6-Azure-NewOrSelectClientSecret.png) +9. 在 Azure 中,复制出客户端密码的值。**注**:只有刚注册时,这个值才是可见的,离开页面后不再可见,请妥善保管这个值。 +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/7-Azure-CopySecretValue.png) +10. 在 RustDesk Pro 中,粘贴客户端密码的值。 +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/8-RustDesk-FillClientSecret.png) +11. 在 RustDesk Pro 中,填入 **Issuer** 字段,`https://login.microsoftonline.com//v2.0`。请将 `Directory (tenant) ID` 替换为您的 **目录(租户) ID**。**目录(租户) ID** 在 Azure 的应用 **概要** 面板中。 +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/9-RustDesk-Issuer.png) +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/10-Azure-TenantID.png) +12. 在 Azure 中, 选择 **身份验证** 菜单,设置授权,选择 **ID 令牌(用于隐式流和混合流)** 。 +![](/docs/en/self-host/rustdesk-server-pro/oidc/Azure/11-Azure-Auth.png) + + + +## 参考 + +- [openid-settings](https://learn.microsoft.com/en-us/power-pages/security/authentication/openid-settings) +- [v2-protocols-oidc](https://learn.microsoft.com/en-us/azure/active-directory/develop/v2-protocols-oidc) + diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/images/1-Azure-NewRegistration.png b/content/self-host/rustdesk-server-pro/oidc/Azure/images/1-Azure-NewRegistration.png new file mode 100644 index 0000000..c56eca7 Binary files /dev/null and b/content/self-host/rustdesk-server-pro/oidc/Azure/images/1-Azure-NewRegistration.png differ diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/images/10-Azure-TenantID.png b/content/self-host/rustdesk-server-pro/oidc/Azure/images/10-Azure-TenantID.png new file mode 100644 index 0000000..a54fdec Binary files /dev/null and b/content/self-host/rustdesk-server-pro/oidc/Azure/images/10-Azure-TenantID.png differ diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/images/11-Azure-Auth.png b/content/self-host/rustdesk-server-pro/oidc/Azure/images/11-Azure-Auth.png new file mode 100644 index 0000000..6b002a2 Binary files /dev/null and b/content/self-host/rustdesk-server-pro/oidc/Azure/images/11-Azure-Auth.png differ diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/images/2-Azure-Register.png b/content/self-host/rustdesk-server-pro/oidc/Azure/images/2-Azure-Register.png new file mode 100644 index 0000000..0eee18e Binary files /dev/null and b/content/self-host/rustdesk-server-pro/oidc/Azure/images/2-Azure-Register.png differ diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/images/3-RustDesk-NewAuthProvider.png b/content/self-host/rustdesk-server-pro/oidc/Azure/images/3-RustDesk-NewAuthProvider.png new file mode 100644 index 0000000..3f0339c Binary files /dev/null and b/content/self-host/rustdesk-server-pro/oidc/Azure/images/3-RustDesk-NewAuthProvider.png differ diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/images/4-Azure-ClientID.png b/content/self-host/rustdesk-server-pro/oidc/Azure/images/4-Azure-ClientID.png new file mode 100644 index 0000000..740cac4 Binary files /dev/null and b/content/self-host/rustdesk-server-pro/oidc/Azure/images/4-Azure-ClientID.png differ diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/images/5-RustDesk-ClientID.png b/content/self-host/rustdesk-server-pro/oidc/Azure/images/5-RustDesk-ClientID.png new file mode 100644 index 0000000..d2c2232 Binary files /dev/null and b/content/self-host/rustdesk-server-pro/oidc/Azure/images/5-RustDesk-ClientID.png differ diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/images/6-Azure-NewOrSelectClientSecret.png b/content/self-host/rustdesk-server-pro/oidc/Azure/images/6-Azure-NewOrSelectClientSecret.png new file mode 100644 index 0000000..eeb3b51 Binary files /dev/null and b/content/self-host/rustdesk-server-pro/oidc/Azure/images/6-Azure-NewOrSelectClientSecret.png differ diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/images/7-Azure-CopySecretValue.png b/content/self-host/rustdesk-server-pro/oidc/Azure/images/7-Azure-CopySecretValue.png new file mode 100644 index 0000000..c669cba Binary files /dev/null and b/content/self-host/rustdesk-server-pro/oidc/Azure/images/7-Azure-CopySecretValue.png differ diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/images/8-RustDesk-FillClientSecret.png b/content/self-host/rustdesk-server-pro/oidc/Azure/images/8-RustDesk-FillClientSecret.png new file mode 100644 index 0000000..cb8655d Binary files /dev/null and b/content/self-host/rustdesk-server-pro/oidc/Azure/images/8-RustDesk-FillClientSecret.png differ diff --git a/content/self-host/rustdesk-server-pro/oidc/Azure/images/9-RustDesk-Issuer.png b/content/self-host/rustdesk-server-pro/oidc/Azure/images/9-RustDesk-Issuer.png new file mode 100644 index 0000000..83a6d37 Binary files /dev/null and b/content/self-host/rustdesk-server-pro/oidc/Azure/images/9-RustDesk-Issuer.png differ diff --git a/content/self-host/rustdesk-server-pro/oidc/_index.en.md b/content/self-host/rustdesk-server-pro/oidc/_index.en.md new file mode 100644 index 0000000..e3e0ba5 --- /dev/null +++ b/content/self-host/rustdesk-server-pro/oidc/_index.en.md @@ -0,0 +1,7 @@ +--- +title: OIDC +weight: 16 +--- + +- Use your existing Google, Okta, Facebook, Azure, Github, Gitlab, etc. accounts to easily create and log in to your RustDesk Pro account. +- Spec. [openid-connect-core-1_0](https://openid.net/specs/openid-connect-core-1_0.html) diff --git a/content/self-host/rustdesk-server-pro/oidc/_index.zh-cn.md b/content/self-host/rustdesk-server-pro/oidc/_index.zh-cn.md new file mode 100644 index 0000000..0808e40 --- /dev/null +++ b/content/self-host/rustdesk-server-pro/oidc/_index.zh-cn.md @@ -0,0 +1,7 @@ +--- +title: OIDC +weight: 16 +--- + +- 使用现有的 Google,Okta,Facebook, Azure, Github, Gitlab 等账号,方便地创建和登录 RustDesk Pro 账户。 +- 说明。[openid-connect-core-1_0](https://openid.net/specs/openid-connect-core-1_0.html)