mirror of https://github.com/byo-software/steam-openid-connect-provider.git synced 2025-01-07 09:06:23 +00:00

Steam OpenID Connect Identity Provider (IdP)

docker keycloak openid openid-connect steam steam-api

Find a file

Enes Sadık Özbek 438370c717 Merge pull request #23 from Tawmy/main Add arm64 to build action, fix branch names		2023-06-18 19:19:58 +03:00
.github/workflows	Add arm64 to build action, fix branch names	2023-06-18 12:55:13 +02:00
develop	Got logout working in a hacky way	2021-05-24 09:46:48 +07:00
src	Merge branch 'master' of https://github.com/neothor/steam-openid-connect-provider	2021-10-21 08:41:00 +03:00
.dockerignore	Initial code commit	2019-05-02 00:41:28 +03:00
.editorconfig	Remove roslyn specific header termplate	2021-05-09 20:35:44 +07:00
.gitattributes	Added request logging to see the actual requests to the SteamOpenIdConnectProvider	2021-05-20 21:22:01 +07:00
.gitignore	Use postgresql for faster startup	2021-05-11 07:42:16 +07:00
dev.local.plantuml	Added nginx proxy with SSL support.	2021-05-15 11:42:14 +07:00
docker-compose.debug.yml	Trying to setup with debugging in visual studio	2021-05-17 08:34:14 +07:00
docker-compose.secrets.yml.template	Trying to setup with debugging in visual studio	2021-05-17 08:34:14 +07:00
docker-compose.yml	Added request logging to see the actual requests to the SteamOpenIdConnectProvider	2021-05-20 21:22:01 +07:00
LICENSE	Initial commit	2019-05-02 00:28:11 +03:00
README.md	Readme: breaking changes fixes	2021-10-21 09:07:29 +03:00

README.md

Steam OpenId Connect Provider

Steam OpenID 2.0 -> OpenID Connect Provider Proxy

About

This server allows you to use Steam as an OpenID Connect Identity provider (OIDC IDP). This way you can use Steam logins in KeyCloak or any other OpenID Connect based authentication client.

Setup

Add your Steam API Key as user-secrets like this: dotnet user-secrets set "Steam:ApplicationKey" "MySteamApiKey"

Alternatively you can set it up via environment variables: Steam__ApplicationKey=MySteamApiKey (Keep in mind that this is easier but more insecure)

After that set up your redirect URI, ClientID and ClientSecret in the appsettings.json.

If you need to set up multiple redirect URIs, you can set them separated by a comma. OpenID__RedirectUri="http://localhost:8080/auth/realms/master/broker/steam/endpoint, http://localhost:8080/auth/realms/dev/broker/steam/endpoint"

OpenID Configuration

You can access Authorization and Token endpoint details in http://<Your Host>/.well-known/openid-configuration

Supported Scopes

The following scopes are supported: openid, profile.

If you use the profile scope, you get access to the picture, given_name, website and nickname claims too.

HTTPS Support

The server itself does not support https connections. If you want to use https connections please use a reverse proxy like nginx. The example docker-compose.yml contains an example setup.

Running behind reverse proxies

Some reverse proxy setups might require additional configuration, like setting the path base or origin.

To set the origin, set Hosting:PublicOrigin in the appsettings.json or the Hosting__PublicOrigin environment variable to your desired origin. If not set, the origin name is inferred from the request.

Similary, you can use the Hosting:PathBase in the appsettings.json or the Hosting__PathBase environment variable to set the path base. If not set, it will default to "/".

Health checks

This service contains a health check endpoint at /health. It checks if the Steam login servers are working.

Docker

A docker image is also available.

docker run -it \
    -e OpenID__RedirectUri=http://localhost:8080/auth/realms/master/broker/steam/endpoint \
    -e OpenID__ClientID=steamidp \
    -e OpenID__ClientSecret=mysecret \
    -e OpenID__ClientName=myclientname \
    -e Steam__ApplicationKey=MySteamApiKey \
    --restart unless-stopped \
    --name steamidp \
    ghcr.io/byo-software/steam-openid-connect-provider

License

MIT