Discourse is a really great opensource forum, written in Ruby on Rails and Ember.js.

We should try to use it to complement mailing lists and IRC in internal communication, when we need persistent, searchable discussions (with helpful links to the outside world) for a broad and offtopicky subjects.

My aim is to set up an instance (probably in Cloud, but Discourse natural deployment strategy is docker), bind it to our internal SAML for authentication, and call that https://discourse.suse.de

SAML authorization proxy

https://gitlab.suse.de/kpimenov/samlauthproxy

Deployment scripts (for SLE12)

https://gitlab.suse.de/kpimenov/discourse_playbook

Setup for demo:

In the /etc/hosts file:

10.162.168.34   discourse.suse.de
10.162.168.34   discourse-auth-proxy.suse.de

Looking for mad skills in:

rails docker forum internal communication saml

This project is part of:

Hack Week 12

Activity

  • over 4 years ago: vmoravec liked Discourse forum instance for internal use
  • over 4 years ago: digitaltomm liked Discourse forum instance for internal use
  • over 4 years ago: kpimenov started Discourse forum instance for internal use
  • over 4 years ago: kpimenov added keyword "saml" to Discourse forum instance for internal use
  • over 4 years ago: kpimenov added keyword "communication" to Discourse forum instance for internal use
  • Show History

    Comments

    • kpimenov
      over 4 years ago by kpimenov | Reply

      There is a repo for SAML auth Discourse plugin: https://gitlab.suse.de/kpimenov/discoursesamlauth

      Discourse plugin development is not documented anyhow at the moment, but I hope I will figure out all the details from the existing examples.

    • kpimenov
      over 4 years ago by kpimenov | Reply

      Status update

      It turns out, auth plugin is not the right path for us to follow, as it can only complement classical login-and-password auth in Discourse.

      The correct way to implement only the SAML SSO is to build a proxy, which will respond to Discourse SSO spec and forward requests to the selected SAML endpoint.

      That's my plan for today.

    • lnussel
      over 4 years ago by lnussel | Reply

      is it actually possible to reply to discourse mails? The one discourse list I'm subscribed to doesn't allow that at least.

    • darix
      over 4 years ago by darix | Reply

      1. you can have emails. even opening new threads via email should be possible.
      2. you don't need saml. ancor already has an omniauth plugin for ichain style auth.
      3. we already have discourse packages and I actually have it running on my private machine.

    Similar Projects

    Make "salt-toaster" available to be used outside SUSE by PSuarezHernandez

    The salt-toaster (https://github.com/openSUSE...


    Convert the Docker Compose setup of OBS to Kubernetes Resources by dmarcoux

    Throughout this project, I will learn about Kub...