Custom Login Methode

Slush · June 15, 2023, 9:51am

How about a custom login Methode for Cloudflare access?

What I mean:
My idea would be that you can login to Zero Trust in the access area of third party providers or if you have your own application or API or login method or the like. How I would implement it would be as follows.

How I would implement it
I would just add another login method name Custom. When you click on it, it will ask you for the api endpoint, header you need. What is also important to know for Cloudflare would be email, username and other information. I would simply add a code field where you then define the necessary data such as username, email and so on. (I would also add a DOCS where standard JSON data such as “username”, “email” etc. are entered so that Cloudflare can also recognise it or you define yourself which variables are used for what.

Why do I suggest such a thing?

I suggest something like this because we don’t always want to or can’t log in ourselves with GitHub or MS or Google and the function with the code via email is also such a thing with Cloudflare that we don’t like to see or use because it simply takes far too long until you even receive the email. And that would be one of the possibilities to implement an endless number of third party providers in Zero Trust.

Reference images:

Second reference Config Schema: upload://lCwPzDYjJRZ3uPZoVbJkllc2GvC.png
First reference Config Schema: upload://mo5cUXgv52QYCbO6GCSvpsLxuNg.png

Slush · June 15, 2023, 9:56am

Here are the last two references:
https://media.discordapp.net/attachments/960950335080386580/1118840921019121674/referenceConfigSchema1.png

https://media.discordapp.net/attachments/960950335080386580/1118840921270788096/referenceConfigSchema2.png?width=1117&height=605

erisa-cf · June 15, 2023, 10:07am

Hey @Slush thanks for your suggestion!

I like this, I just would like to note that you can already create custom providers using OpenID Connect or SAML.

One example of using this to implement a custom provider is my Discord example here: discord-oidc-worker/worker.js at main · Erisa/discord-oidc-worker · GitHub (Not an official CF product, a personal side project) - you actually only need to implement a subset of the OIDC spec, which simplifies quite a bit.

Slush · June 15, 2023, 10:13am

the problem is its a bit very complicated and you need prob. to recode the existing code then its not anymore really readable for other api users or you have to register on another platform what I dont really like tbh and yea. Something like that would make it easier.

Topic		Replies	Views
Cloudflare Access Custom Login Page Access	2	2655	September 5, 2021
Title Access Access	3	2290	June 10, 2021
Deprecated - Configuring Cloudflare Access to protect an area of your website Tutorial Tutorials	0	20801	July 24, 2019
Use Cloudflare Access to authenticate to cloydflare dashboard/third party apps Feature Request Submitting & Feedback Account	2	2917	January 29, 2021
Is there a way to login to Cloudflare in non-interactive way? Workers	0	812	April 17, 2023

Custom Login Methode

Related topics