| Availability |
Odoo Online
Odoo.sh
On Premise
|
| Odoo Apps Dependencies |
Discuss (mail)
|
| Lines of code | 312 |
| Technical Name |
auth_oauth_okta |
| License | OPL-1 |
| Website | mailto:piyush23321@gmail.com |
| Availability |
Odoo Online
Odoo.sh
On Premise
|
| Odoo Apps Dependencies |
Discuss (mail)
|
| Lines of code | 312 |
| Technical Name |
auth_oauth_okta |
| License | OPL-1 |
| Website | mailto:piyush23321@gmail.com |
Simple Okta SSO
The most reliable, zero-config OAuth2/OIDC integration for Okta.
Secure your Odoo instance with professional Single Sign-On in minutes.
Fig 1: Zero-Config Setup. Just enter your domain and credentials.
The Implicit Risk
Standard Odoo OAuth often relies on outdated "Implicit Grant" flows, which can expose tokens in the browser URL. This is a critical security risk for enterprise environments.
Authorization Code Flow
This module strictly implements the Authorization Code Grant. It performs a secure server-to-server token exchange, ensuring your Okta credentials and user data remain completely hidden and secure.
Premium Capabilities
Dynamic Endpoint Discovery
Just enter your Okta Domain. The module automatically builds the Authorization, Token, and UserInfo URLs. No manual copying of long endpoint links.
Real-Time Group Sync
Manage Odoo permissions directly from Okta. The module dynamically maps Okta Group memberships to Odoo Security Groups based on exact name matching.
Auto-Migration & Profiles
Automatically creates new users on their first login. Choose globally whether new identities are provisioned as Internal Users (employees) or Portal Users (customers).
Seamless UI Integration
Injects a professional "Sign in with Okta" button directly into your Odoo login screen. Sensitive Client Secrets are masked in the backend for maximum admin security.
Interface Preview
Frictionless Login
A clean, native-feeling entry point for your team. Clicking the Okta button redirects them to your secure Okta portal, processes the MFA (if enabled in Okta), and seamlessly logs them into Odoo.
Installation Guide
Okta Configuration
A. Create Application
- Go to Applications > Create App Integration.
- Select OIDC - OpenID Connect -> Web Application.
- Grant type: Ensure Authorization Code is checked.
B. Configure URIs (Critical)
https://your-odoo.com/auth_oauth/signin
Sign-out redirect URI:
https://your-odoo.com/web/login
C. Group Claims (Optional)
- Edit OpenID Connect ID Token settings.
- Set Groups claim filter: Name
groups, Filter Matches regex.*
Odoo Configuration
A. Enable OAuth
- Go to Settings > General Settings.
- Check OAuth Authentication and Free Sign Up. Save.
B. Setup Provider
- Go to Settings > Users & Companies > OAuth Providers.
- Edit the Okta SSO record.
- Provider Type:
Okta - Paste your Okta Client ID and Client Secret.
- Enter your Okta Domain (e.g., https://dev-123.okta.com).
- Select Internal User or Portal User mapping.
🛠 Technical Specifications
| Odoo Compatibility | v19.0.1.0.0 (Requires `auth_oauth` core module) |
| OAuth Flow | Authorization Code Flow (Server-side) |
| Identity Protocol | OIDC 1.0 (OpenID Connect) |
| Supported Scopes | openid email profile groups |
| Security Std. | TLS 1.2+ required by Okta; Bearer Token Auth |
Crafted with Passion
"I saw too many companies struggling to configure Okta with Odoo. They were either using insecure Implicit flows, fighting with manual endpoint URLs, or unable to sync user groups."
I built this module to make enterprise-grade identity management truly 'plug-and-play'. By automating endpoint discovery and enforcing the Authorization Code flow, you get maximum security with zero headaches.
Enterprise Support
Need help with your Okta URIs or Group Mapping configuration?
Piyush Chauhan
Senior Odoo Developer
piyush23321@gmail.comMade with by Piyush Chauhan
Keywords: Odoo Okta SSO, OpenID Connect Odoo, OAuth2 Authorization Code Flow, Okta Group Sync, Identity Management, Enterprise SSO Odoo 19, Auth OAuth Extension.
Odoo Proprietary License v1.0 This software and associated files (the "Software") may only be used (executed, modified, executed after modifications) if you have purchased a valid license from the authors, typically via Odoo Apps, or if you have received a written agreement from the authors of the Software (see the COPYRIGHT file). You may develop Odoo modules that use the Software as a library (typically by depending on it, importing it and using its resources), but without copying any source code or material from the Software. You may distribute those modules under the license of your choice, provided that this license is compatible with the terms of the Odoo Proprietary License (For example: LGPL, MIT, or proprietary licenses similar to this one). It is forbidden to publish, distribute, sublicense, or sell copies of the Software or modified copies of the Software. The above copyright notice and this permission notice must be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
Please log in to comment on this module