AppFlowy-IO/AppFlowy
1
0
Fork 0
mirror of https://github.com/AppFlowy-IO/AppFlowy.git synced 2026-03-24 12:56:59 +00:00
Code Issues 952 Projects Packages Wiki Activity

[GH-ISSUE #4756] [FR] Self-host more sign-up/login options #2128

New issue
Closed
opened 2026-03-23 21:19:52 +00:00 by mirror · 14 comments
mirror commented 2026-03-23 21:19:52 +00:00
Owner
Copy link

Originally created by @yujinio on GitHub (Feb 27, 2024).
Original GitHub issue: https://github.com/AppFlowy-IO/AppFlowy/issues/4756

Description

AppFlowy is advertised as a privacy-first service, but for some reason only allows to sign-up and login through the most anti-private third-party oauth vendors available: github (microsoft), discord and google.

I'd suggest to implement a few more options to sign-up and login.

And no, using the app in offline mode only is not a solution to the problem I'm highlighting IMO.

Impact

By adding other OAuth2 providers:

  • More users (audience growth);
  • More privacy (with privacy-friendly vendors).

By adding other sign-up/login options:

  • Flexibility;
  • More privacy.

Additional Context

I couldn't find if such an issue already exists, so sorry in advance if I'm duplicating it.

Originally created by @yujinio on GitHub (Feb 27, 2024). Original GitHub issue: https://github.com/AppFlowy-IO/AppFlowy/issues/4756 ### Description AppFlowy is advertised as a privacy-first service, but for some reason only allows to sign-up and login through the most anti-private third-party oauth vendors available: github (microsoft), discord and google. I'd suggest to implement a few more options to sign-up and login. And no, using the app in offline mode only is not a solution to the problem I'm highlighting IMO. ### Impact By adding other OAuth2 providers: - More users (audience growth); - More privacy (with privacy-friendly vendors). By adding other sign-up/login options: - Flexibility; - More privacy. ### Additional Context - _I couldn't find if such an issue already exists, so sorry in advance if I'm duplicating it._
mirror 2026-03-23 21:19:52 +00:00
mirror commented 2026-03-23 21:19:53 +00:00
Author
Owner
Copy link

@moolight-seashell commented on GitHub (Mar 28, 2024):

this should be high priority in the things to do

<!-- gh-comment-id:2026046362 --> @moolight-seashell commented on GitHub (Mar 28, 2024): this should be high priority in the things to do
mirror commented 2026-03-23 21:19:53 +00:00
Author
Owner
Copy link

@annieappflowy commented on GitHub (Mar 29, 2024):

We've enabled the backend to support sign in with magic link or password and will work on the frontend in April
What other OAuth2 options would you like to use?

<!-- gh-comment-id:2026433581 --> @annieappflowy commented on GitHub (Mar 29, 2024): We've enabled the backend to support sign in with magic link or password and will work on the frontend in April What other OAuth2 options would you like to use?
mirror commented 2026-03-23 21:19:54 +00:00
Author
Owner
Copy link

@moolight-seashell commented on GitHub (Mar 29, 2024):

first be able to connect with password and magic links on pc and android,

then
maybe use 2 factors authentification with one time password like do Aegis. or even all FIDO like devices like yubikey.
Probably hard to implement if superbase d'ont support them but well this app pretend to be a secure note app, right ? =P =)

Personnaly i d'ont see why you're using these these third-party OAuth2 at all and even with google mircosoft or others

<!-- gh-comment-id:2027647230 --> @moolight-seashell commented on GitHub (Mar 29, 2024): first be able to connect with password and magic links on pc and android, then maybe use 2 factors authentification with one time password like do Aegis. or even all FIDO like devices like yubikey. Probably hard to implement if superbase d'ont support them but well this app pretend to be a secure note app, right ? =P =) Personnaly i d'ont see why you're using these these third-party OAuth2 at all and even with google mircosoft or others
mirror commented 2026-03-23 21:19:54 +00:00
Author
Owner
Copy link

@yujinio commented on GitHub (Mar 30, 2024):

@annieappflowy

We've enabled the backend to support sign in with magic link or password and will work on the frontend in April

Hi Annie,

These are some great news, thanks!
Looking forward to seeing an option to sign in with magic link or password in desktop and mobile apps.

What other OAuth2 options would you like to use?

For those who self-host it might be convenient to have an option to implement a custom OIDC OAuth2 provider support, e.g. Keycloak, Authelia, etc. Some open-source services (e.g. Gitea/Forgejo, Outline) support OIDC.

Speaking about publicly available OAuth2 providers, I'm not sure. I personally wouldn't use any because I prefer not to rely on any third-party (MITM) to access any kind of a service.

P.S. here's a wiki list of OAuth2 providers if you need it: https://en.wikipedia.org/wiki/List_of_OAuth_providers

<!-- gh-comment-id:2028203261 --> @yujinio commented on GitHub (Mar 30, 2024): @annieappflowy > We've enabled the backend to support sign in with magic link or password and will work on the frontend in April Hi Annie, These are some great news, thanks! Looking forward to seeing an option to sign in with magic link or password in desktop and mobile apps. > What other OAuth2 options would you like to use? For those who self-host it might be convenient to have an option to implement a custom OIDC OAuth2 provider support, e.g. Keycloak, Authelia, etc. Some open-source services (e.g. Gitea/Forgejo, Outline) support OIDC. Speaking about publicly available OAuth2 providers, I'm not sure. I personally wouldn't use any because I prefer not to rely on any third-party (MITM) to access any kind of a service. P.S. here's a wiki list of OAuth2 providers if you need it: https://en.wikipedia.org/wiki/List_of_OAuth_providers
mirror commented 2026-03-23 21:19:54 +00:00
Author
Owner
Copy link

@flavienbwk commented on GitHub (Aug 7, 2024):

Is there any current work allowing AppFlowy to be used with SSO such as Keycloak ? (OIDC)

<!-- gh-comment-id:2273638134 --> @flavienbwk commented on GitHub (Aug 7, 2024): Is there any current work allowing AppFlowy to be used with SSO such as Keycloak ? (OIDC)
mirror commented 2026-03-23 21:19:54 +00:00
Author
Owner
Copy link

@jernejcvek commented on GitHub (Oct 30, 2024):

Is there any current work allowing AppFlowy to be used with SSO such as Keycloak ? (OIDC)

That would be awesome since Keycloak is open source and, besides integrated auth, provides the possibility to use other identity providers as well.

<!-- gh-comment-id:2446208112 --> @jernejcvek commented on GitHub (Oct 30, 2024): > Is there any current work allowing AppFlowy to be used with SSO such as Keycloak ? (OIDC) That would be awesome since Keycloak is open source and, besides integrated auth, provides the possibility to use other identity providers as well.
mirror commented 2026-03-23 21:19:54 +00:00
Author
Owner
Copy link

@yggi commented on GitHub (Nov 15, 2024):

👍 Just found this when researching how to authenticate to appflowy with a different oauth provider. Would ❤️ to have it playing nice with authelia

<!-- gh-comment-id:2479448009 --> @yggi commented on GitHub (Nov 15, 2024): :+1: Just found this when researching how to authenticate to appflowy with a different oauth provider. Would :heart: to have it playing nice with authelia
mirror commented 2026-03-23 21:19:55 +00:00
Author
Owner
Copy link

@JorySeverijnse commented on GitHub (Jan 12, 2025):

Any update with providing more login options, would really love to see this so i could switch over to appflowy :)

<!-- gh-comment-id:2585890061 --> @JorySeverijnse commented on GitHub (Jan 12, 2025): Any update with providing more login options, would really love to see this so i could switch over to appflowy :)
mirror commented 2026-03-23 21:19:55 +00:00
Author
Owner
Copy link

@khorshuheng commented on GitHub (Jan 13, 2025):

If you need support for Authelia, Okta etc, currently, it should be possible to use SAML 2.0.

<!-- gh-comment-id:2586067393 --> @khorshuheng commented on GitHub (Jan 13, 2025): If you need support for Authelia, Okta etc, currently, it should be possible to use SAML 2.0.
mirror commented 2026-03-23 21:19:55 +00:00
Author
Owner
Copy link

@almereyda commented on GitHub (Feb 8, 2025):

Most of the gotrue supported providers are working. I'm successfully logging in to the admin /console with GitLab, for example.

Therefore this seems to be superseded by:

<!-- gh-comment-id:2645883285 --> @almereyda commented on GitHub (Feb 8, 2025): Most of the gotrue supported providers are working. I'm successfully logging in to the admin /console with GitLab, for example. Therefore this seems to be superseded by: - #6834
mirror commented 2026-03-23 21:19:55 +00:00
Author
Owner
Copy link

@khorshuheng commented on GitHub (Feb 9, 2025):

@almereyda How did you login via gitlab? While gotrue does support this, I can't think of a way to login via gitlab unless the admin console / AppFlowy Web login page has been modified to add gitlab as an option.

<!-- gh-comment-id:2646009330 --> @khorshuheng commented on GitHub (Feb 9, 2025): @almereyda How did you login via gitlab? While gotrue does support this, I can't think of a way to login via gitlab unless the admin console / AppFlowy Web login page has been modified to add gitlab as an option.
mirror commented 2026-03-23 21:19:55 +00:00
Author
Owner
Copy link

@almereyda commented on GitHub (Feb 9, 2025):

The admin console was recently extended.

It was in

<!-- gh-comment-id:2646344390 --> @almereyda commented on GitHub (Feb 9, 2025): The admin console was recently extended. It was in - https://github.com/AppFlowy-IO/AppFlowy-Cloud/pull/874
mirror commented 2026-03-23 21:19:56 +00:00
Author
Owner
Copy link

@annieappflowy commented on GitHub (Apr 18, 2025):

We recently supported:

  1. login with OTP
  2. paste the magic link into the browser to redirect

We'll soon support login with password.

<!-- gh-comment-id:2814529117 --> @annieappflowy commented on GitHub (Apr 18, 2025): We recently supported: 1. login with OTP 2. paste the magic link into the browser to redirect We'll soon support login with password.
mirror commented 2026-03-23 21:19:56 +00:00
Author
Owner
Copy link

@tz-torchai commented on GitHub (Dec 25, 2025):

Let me know if this should be a separate issue, but I think it’s related.

We should support OIDC (OAuth 2.0) sign-in in addition to SAML 2.0. OIDC is the recommended and more modern approach compared to SAML.

There are too many social login providers to support individually, so AppFlowy shouldn’t try to integrate each one directly. OIDC support solves this problem in a scalable way.

<!-- gh-comment-id:3691127322 --> @tz-torchai commented on GitHub (Dec 25, 2025): Let me know if this should be a separate issue, but I think it’s related. We should support OIDC (OAuth 2.0) sign-in in addition to SAML 2.0. OIDC is the recommended and more modern approach compared to SAML. There are too many social login providers to support individually, so AppFlowy shouldn’t try to integrate each one directly. OIDC support solves this problem in a scalable way.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
copilot/fix-date-format-issue
feat/mention_a_person
merge_upstream_v6
mobile/release/0.9.3
release/0.9.3
release/0.9.2
select_source
release/0.9.1
refactor_import_data
release/0.8.9.1
release/0.8.9
anon_user_mode
release/0.8.8
fix_windows_selection
release/0.8.7
annieappflowy-patch-1
windows_local_ai
release/0.8.6
release/0.8.5
release/0.8.4
chore/optional-response-format
release/0.8.3
release/0.8.2
release/0.8.1
release/0.8.0
release/0.7.9
feat/support-rename-workspace
chat_rag_only
calculate_ui_test
release/0.7.8
release/0.7.7
stringfi_cells
hotfix/0.7.5
release/0.7.4
client-api-update
feat/collab-editing
fix_calculation_bug
feat/upload-file-in-document
update-client-api
feat/support-global-comment-on-web
update-client-api-2
feat/support-duplicate-publish-on-web
feat/ai-plan-billing
chore/test-web-deploy
chore/enable-billing-for-testing
build/test
ai_tag_feature
chore/enable-billing-plan
feat/billing-client-windows
chore/support-openai-chat
fix/try-no-media-kit
sign-in-error-format
workspace-invite-ci-test
last-workspace
workspace-invite-wip
feat/date-text-input
appflowy_v1
0.11.1
0.11.0
0.10.9
0.11.2
0.10.7
0.10.6
0.10.5
0.11.3
0.11.4
0.10.8
0.10.4
0.10.3
0.10.2
0.10.0
0.10.1
0.9.9
0.9.8
0.9.7
0.9.5
0.9.6
0.9.4
0.9.3
0.9.2
0.9.1
0.9.0
0.8.9
0.8.8
0.8.7
0.8.6
0.8.5
0.8.4
0.8.3
0.8.2
0.8.1
0.8.0
0.7.9
0.7.8
0.7.7
0.7.6
0.7.5
0.7.4
0.7.3
0.7.2
0.7.1
0.7.0
0.6.9
0.6.8
0.6.7.2
0.6.7.1
0.6.7
0.6.6
0.6.5
0.6.4
0.6.3
0.6.2
0.6.1
v0.6.1
0.6.0
0.5.9
0.5.8
0.5.7
0.5.6
0.5.5
0.5.4
0.5.3
0.5.2
0.5.1
0.5.0
0.4.9
0.4.8
0.4.7
0.4.6
0.4.5
0.4.4
0.4.3
0.4.2
0.4.1
0.4.0
0.3.9.1
0.3.9
0.3.8
0.3.7
0.3.6
0.3.5
0.3.4
0.3.3
0.3.2
0.3.1
0.3.0
0.2.9
0.2.8
0.2.7
0.2.6
0.2.5
0.2.4
0.2.3
0.2.2
0.2.1
0.2.0
0.1.6
0.1.5
0.1.4
0.1.3
0.1.2
0.1.1
0.1.0
0.0.9.1
0.0.9
0.0.8.1
0.0.8
0.0.7.1
0.0.7
0.0.6.2
0.0.6.1
0.0.6
0.0.6_beta.1
0.0.5.3
0.0.5.2
0.0.5.1
0.0.5
0.0.5_beta.2
0.0.5_beta.1
0.0.4
0.0.4_beta.3
0.0.4_beta.2
0.0.4_beta.1
0.0.3
0.0.3_beta.2
0.0.3_beta.1
0.0.2
0.0.1
Labels
Clear labels   
2024

   
2025

   
2026

   
acct mgmt

   
AI

   
automation

   
bug

   
calendar

   
ci

   
CJK

   
cloud

   
code-block

   
collaboration

   
copy-paste

   
database

   
data migration

   
data sync

   
deploy

   
desktop

   
develop

   
develop

   
documentation

   
duplicate

   
editor

   
editor-plugin

   
emoji

   
export

   
files

   
flutter-only

   
follow-up

   
formula

   
good first issue for devs

   
good first issue for experienced devs

   
grid

   
hacktoberfest

   
HACKTOBERFEST-ACCEPTED

   
help wanted

   
i18n

   
icons

   
images

   
importer

   
improvements

   
infra

   
install

   
integrations

   
IR

   
kanban board

   
login

   
look and joy

   
mentorship

   
mobile

   
mobile

   
needs design

   
new feature

   
new feature

   
non-coding

   
notes

   
notifications

   
onboarding

   
organization

   
P0+

   
permission

   
platform-linux

   
platform-mac

   
platform-windows

   
plugins

   
program

   
pull-request

Mirrored from GitHub Pull Request

  
Q1 25

   
Q1 26

   
Q2 24

   
Q2 25

   
Q3 24

   
Q3 25

   
Q4 24

   
Q4 25

   
react

   
regression

   
rust

   
rust

   
Rust-only

   
Rust-only

   
Rust-starter

   
Rust-starter

   
self-hosted

   
shortcuts

   
side panel

   
slash-menu

   
sync v2

   
table

   
tablet

   
task

   
tauri

   
templates

   
tests

   
themes

   
translation

   
v0.5.6

   
v0.5.8

   
v0.5.9

   
v0.6.0

   
v0.6.1

   
v0.6.4

   
v0.6.7

   
v0.6.8

   
v0.7.1

   
v0.7.4

   
v0.7.4

   
v0.7.5

   
v0.7.6

   
v0.7.7

   
v0.7.8

   
v0.8.0

   
v0.8.4

   
v0.8.5

   
v0.8.9

   
web
No labels
2024
2025
2026
acct mgmt
AI
automation
bug
calendar
ci
CJK
cloud
code-block
collaboration
copy-paste
database
data migration
data sync
deploy
desktop
develop
develop
documentation
duplicate
editor
editor-plugin
emoji
export
files
flutter-only
follow-up
formula
good first issue for devs
good first issue for experienced devs
grid
hacktoberfest
HACKTOBERFEST-ACCEPTED
help wanted
i18n
icons
images
importer
improvements
infra
install
integrations
IR
kanban board
login
look and joy
mentorship
mobile
mobile
needs design
new feature
new feature
non-coding
notes
notifications
onboarding
organization
P0+
permission
platform-linux
platform-mac
platform-windows
plugins
program
pull-request
Q1 25
Q1 26
Q2 24
Q2 25
Q3 24
Q3 25
Q4 24
Q4 25
react
regression
rust
rust
Rust-only
Rust-only
Rust-starter
Rust-starter
self-hosted
shortcuts
side panel
slash-menu
sync v2
table
tablet
task
tauri
templates
tests
themes
translation
v0.5.6
v0.5.8
v0.5.9
v0.6.0
v0.6.1
v0.6.4
v0.6.7
v0.6.8
v0.7.1
v0.7.4
v0.7.4
v0.7.5
v0.7.6
v0.7.7
v0.7.8
v0.8.0
v0.8.4
v0.8.5
v0.8.9
web
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
AppFlowy-IO/AppFlowy#2128
No description provided.