Single Sign On - carvenli/pritunl GitHub Wiki

Single sign-on allows users to sign in with their Google account. After a single sign-on domain is set users will be able to click Sign in with Google at the Pritunl login page. Once a user clicks sign in the Prtiunl server will initiate a sign in request with the single sign-on servers (auth.pritunl.com) then redirect the user. The single sign-on server will then authenticate the user with Oauth. Once they have logged in and completed the Oauth authentication the user will be sent back to the Pritunl server. The Pritunl server will then create a user if it is the first single sign-on from the user or lookup the existing user and redirect the user to a page to download their vpn keys.

Settings

Single Sign-On Domain

The Google apps domain such as pritunl.com that the users must be part of to use single sign-on. Multiple domains can be used separated by a comma.

Single Sign-On Organization

The organization that the single sign-on users will be added to.