Implemented OIDC draft for Taiga

roles/docker-taiga/templates/docker-compose.yml.j2

@@ -2,7 +2,7 @@ services:
 {% include 'roles/docker-central-database/templates/services/' + database_type + '.yml.j2' %}
   taiga-back:
 {% include 'roles/docker-compose/templates/services/base.yml.j2' %}
-    image: taigaio/taiga-back:{{applications.taiga.version}}
+    image: {{taiga_image_backend}}:{{applications.taiga.version}}
     volumes:
       # These volumens will be used by taiga-back and taiga-async.
       - static-data:/taiga-back/static
@@ -18,7 +18,7 @@ services:
 
   taiga-async:
 {% include 'roles/docker-compose/templates/services/base.yml.j2' %}
-    image: taigaio/taiga-back:latest
+    image: {{taiga_image_backend}}:{{applications.taiga.version}}
     entrypoint: ["/taiga-back/docker/async_entrypoint.sh"]
     volumes:
       # These volumens will be used by taiga-back and taiga-async.
@@ -43,7 +43,7 @@ services:
       taiga:
 
   taiga-front:
-    image: taigaio/taiga-front:latest
+    image: {{taiga_image_frontend}}:{{applications.taiga.version}}
 {% include 'roles/docker-compose/templates/services/base.yml.j2' %}
 {% include 'templates/docker/container/networks.yml.j2' %}
       taiga:

roles/docker-taiga/templates/env.j2

@@ -46,3 +46,22 @@ MAX_AGE             =   360
 
 # Taiga's Telemetry - Variable to enable or disable the anonymous telemetry
 ENABLE_TELEMETRY    =   True
+
+{% if applications[application_id].oidc.enabled %}
+# OICD 
+# @See https://github.com/robrotheram/taiga-contrib-openid-auth
+ENABLE_OPENID="True"
+OPENID_URL="{{oidc.client.authorize_url}}"
+OPENID_USER_URL="{{oidc.client.user_info_url}}"
+OPENID_TOKEN_URL="{{oidc.client.torken_url}}"
+OPENID_CLIENT_ID="{{oidc.client.id}}"
+OPENID_CLIENT_SECRET="{{oidc.client.secret}}"
+OPENID_NAME="SSO"
+# Default Values
+#
+# OPENID_ID_FIELD="sub"
+# OPENID_USERNAME_FIELD="preferred_username"
+# OPENID_FULLNAME_FIELD="name"
+# OPENID_EMAIL_FIELD="email"
+# OPENID_SCOPE="openid email"
+{% endif %}