My team and I are currently looking into Ghost and we planned out most of the implementation and deployment – great docs for these by the way.
I was curious to see how other users are handling SSO and/or LDAP authentication, as we are in a heavily restricted VPC and adding in users locally would be a non-starter for our security review.
I see a FR here: https://github.com/TryGhost/Ghost/issues/9919, as well as a post here Third party Single Sign On (SSO) and Auth via LDAP or OAuth , and it seems like not much discussion have been brought up for this.
What it comes down to, it seems as though my options are:
- Put an LDAP auth guard behind ghost or
- Write out our own SSO integration into the codebase
I’m asking to see if the community has something already that I can look into and work off of, or if there are plans/timelines for SSO integration , or has another direction I can go into the rabbit hole of in terms of getting/developing a solution for this.