1.2.2 Configuring Auth

The very first thing to configure with Concourse is how users will log in, and what those users should be able to do.

This is configured in two separate tiers:

Concourse currently supports the following auth methods:

  1. 1.2.2.1 Local User auth
  2. 1.2.2.2 GitHub auth
  3. 1.2.2.3 GitLab auth
  4. 1.2.2.4 BitBucket Cloud auth
  5. 1.2.2.5 CF/UAA auth
  6. 1.2.2.6 LDAP auth
  7. 1.2.2.7 Generic OIDC auth
  8. 1.2.2.8 Generic oAuth

Any number of providers can be enabled at any one time. Users will be given a choice when logging in as to which one they would like to use.

Concourse uses a fork of Dex for its authentication. You can find additional documentation on the supported auth providers in the Dex connectors documentation.

Adding a new auth provider to Concourse is as simple as submitting a pull request to our fork of Dex and then adding a bit of configuration to the skymarshal component.