| Availability |
Odoo Online
Odoo.sh
On Premise
|
| Odoo Apps Dependencies |
Discuss (mail)
|
| Lines of code | 5730 |
| Technical Name |
flexigo_2fa_sso_saml_oidc_modern_bundle_for_odoo_commun |
| License | OPL-1 |
| Website | https://flexigotech.com |
| Versions | 17.0 18.0 19.0 |
Odoo 19 Community authentication
Flexigo 2FA SSO SAML OIDC Modern Bundle
Bring SAML 2.0, OpenID Connect, TOTP, FIDO2 passkeys, SCIM 2.0 provisioning, audit logs, and MFA coverage reports into Odoo Community without paid license lock-in.
Odoo 19 LGPL-3 Free public module SAML + OIDC + MFA + SCIM
Problem: authentication gaps create risk
Odoo Community teams often run business-critical data with local passwords, manual onboarding, weak second-factor coverage, and limited authentication evidence for security reviews.
Identity drift
Users disabled in the identity provider can remain active in Odoo when provisioning is manual or delayed.
MFA evidence gaps
Security teams need clear proof of MFA enforcement for NIS2, PCI-DSS, ISO 27001, and internal audit controls.
Fragmented login stack
Separate SSO, MFA, session, and provisioning tools make configuration harder and audit trails incomplete.
Solution: one authentication bundle for Odoo
The module centralizes SAML 2.0, OpenID Connect, MFA policy enforcement, SCIM provisioning logs, active sessions, and compliance reporting in native Odoo backend menus.
SAML 2.0 service provider
Connect Azure AD, Okta, Google Workspace, ADFS, Keycloak, and compatible enterprise identity providers.
OpenID Connect relying party
Use authorization-code flow, PKCE, discovery, nonce, and state validation for modern identity federation.
MFA policy layer
Apply TOTP and FIDO2 passkey requirements by company, group, identity provider, and grace period.
SCIM 2.0 provisioning
Track user lifecycle operations from the IdP with source, operation, success state, and affected user fields.
Audit and sessions
Review authentication events, active sessions, methods, IP addresses, and security outcomes in one place.
Coverage reporting
Create MFA coverage records that support NIS2, PCI-DSS, GDPR Article 32, and ISO 27001 evidence packs.
Walkthrough video carousel
The video assets are produced downstream from the runtime screenshots. The player references all three language files with local and GitHub raw fallbacks for Apps Store delivery.
English — 2-minute walkthrough
Espanol — walkthrough de 2 minutos
Deutsch — 2-Minuten-Rundgang
Runtime screenshot gallery
Every screenshot below is a real backend capture from the seeded Odoo runtime install.
Audience
IT managers
Reduce manual password resets, onboard users through the IdP, and keep Odoo access aligned with corporate identity policy.
Security officers
Use MFA policies, event logs, active sessions, and coverage reports to support security monitoring and audit reviews.
Odoo partners
Deliver enterprise authentication patterns for Community customers while keeping the module open and extensible.
Compatibility
Odoo versions
Designed for Odoo 19 Community and Enterprise installations using the standard base, web, and mail modules.
Optional Python libraries
SAML, OIDC, TOTP, and FIDO2 features use guarded optional dependencies so hosts can install the module cleanly.
Pricing
Free public LGPL-3 release
This module is published as a free brand-building asset. There is no Odoo Apps license price, and implementation support can be discussed through FlexigoTech services.
FAQ
Does this replace an external identity provider?
No. It connects Odoo to identity providers such as Azure AD, Okta, Google Workspace, ADFS, and Keycloak.
Can it support both SAML and OpenID Connect?
Yes. The module includes SAML 2.0 service provider flows and OpenID Connect relying party flows.
How does MFA enforcement work?
Administrators configure MFA policies by company, IdP, or group, with grace periods and accepted factor types.
Is SCIM included?
Yes. The provisioning log records SCIM and JIT lifecycle events including operation, source, affected user, and success status.
Does this guarantee legal compliance?
No software alone guarantees compliance. The module provides authentication controls and evidence that can support NIS2, PCI-DSS, GDPR Article 32, and ISO 27001 programs.
Secure Odoo Community authentication
Deploy SAML, OIDC, MFA, SCIM, and audit evidence in one Odoo-native module.
Contact FlexigoTech| Availability |
Odoo Online
Odoo.sh
On Premise
|
| Odoo Apps Dependencies |
Discuss (mail)
|
| Lines of code | 5730 |
| Technical Name |
flexigo_2fa_sso_saml_oidc_modern_bundle_for_odoo_commun |
| License | OPL-1 |
| Website | https://flexigotech.com |
Odoo Proprietary License v1.0 This software and associated files (the "Software") may only be used (executed, modified, executed after modifications) if you have purchased a valid license from the authors, typically via Odoo Apps, or if you have received a written agreement from the authors of the Software (see the COPYRIGHT file). You may develop Odoo modules that use the Software as a library (typically by depending on it, importing it and using its resources), but without copying any source code or material from the Software. You may distribute those modules under the license of your choice, provided that this license is compatible with the terms of the Odoo Proprietary License (For example: LGPL, MIT, or proprietary licenses similar to this one). It is forbidden to publish, distribute, sublicense, or sell copies of the Software or modified copies of the Software. The above copyright notice and this permission notice must be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
Please log in to comment on this module