Revert "fix clipboard perms amidaware/tacticalrmm#1134"

This reverts commit 98a85a8b2e.
fix clipboard perms amidaware/tacticalrmm#1134
2025-02-01 20:10:38 +00:00 · 2025-02-01 10:34:07 +00:00 · 2025-01-24 23:53:52 +00:00 · 2024-11-20 19:39:45 +00:00 · 2024-11-20 11:33:39 -08:00 · 2024-11-19 23:15:17 +00:00
29 changed files with 1608 additions and 206 deletions
--- a/package-lock.json
+++ b/package-lock.json
@@ -1,26 +1,26 @@
 {
  "name": "web",
-  "version": "0.101.49",
+  "version": "0.101.50",
  "lockfileVersion": 3,
  "requires": true,
  "packages": {
    "": {
      "name": "web",
-      "version": "0.101.48",
+      "version": "0.101.49",
      "dependencies": {
-        "@quasar/extras": "1.16.12",
-        "@vueuse/core": "11.1.0",
-        "@vueuse/integrations": "11.1.0",
-        "@vueuse/shared": "11.1.0",
+        "@quasar/extras": "1.16.13",
+        "@vueuse/core": "11.2.0",
+        "@vueuse/integrations": "11.2.0",
+        "@vueuse/shared": "11.2.0",
        "@xterm/addon-fit": "0.10.0",
        "@xterm/xterm": "5.5.0",
        "apexcharts": "3.54.1",
        "axios": "1.7.7",
        "dotenv": "16.4.5",
        "monaco-editor": "0.50.0",
-        "pinia": "2.2.4",
+        "pinia": "2.2.6",
        "qrcode": "1.5.4",
-        "quasar": "2.17.1",
+        "quasar": "2.17.2",
        "vue": "3.5.12",
        "vue-router": "4.4.5",
        "vue3-apexcharts": "1.7.0",
@@ -972,9 +972,9 @@
      }
    },
    "node_modules/@quasar/extras": {
-      "version": "1.16.12",
-      "resolved": "https://registry.npmjs.org/@quasar/extras/-/extras-1.16.12.tgz",
-      "integrity": "sha512-hLlb3Buxo38Xg/2w0BTkz98RBh/VH8apZ2r6Fl8YpPgrVQ0diHyN/BVTvIOk5Kch2y38L2kvwOIddsB2UcCuIg==",
+      "version": "1.16.13",
+      "resolved": "https://registry.npmjs.org/@quasar/extras/-/extras-1.16.13.tgz",
+      "integrity": "sha512-6QdnYbFYhgeWFAwytUWTDgpP/mcJxydBmgO91cHr9MMTx0GLaVJY6d10m/G/XS9TzMnSsZgqO7kbVHf3Hvml3w==",
      "license": "MIT",
      "funding": {
        "type": "github",
@@ -1606,14 +1606,14 @@
      "license": "MIT"
    },
    "node_modules/@vueuse/core": {
-      "version": "11.1.0",
-      "resolved": "https://registry.npmjs.org/@vueuse/core/-/core-11.1.0.tgz",
-      "integrity": "sha512-P6dk79QYA6sKQnghrUz/1tHi0n9mrb/iO1WTMk/ElLmTyNqgDeSZ3wcDf6fRBGzRJbeG1dxzEOvLENMjr+E3fg==",
+      "version": "11.2.0",
+      "resolved": "https://registry.npmjs.org/@vueuse/core/-/core-11.2.0.tgz",
+      "integrity": "sha512-JIUwRcOqOWzcdu1dGlfW04kaJhW3EXnnjJJfLTtddJanymTL7lF1C0+dVVZ/siLfc73mWn+cGP1PE1PKPruRSA==",
      "license": "MIT",
      "dependencies": {
        "@types/web-bluetooth": "^0.0.20",
-        "@vueuse/metadata": "11.1.0",
-        "@vueuse/shared": "11.1.0",
+        "@vueuse/metadata": "11.2.0",
+        "@vueuse/shared": "11.2.0",
        "vue-demi": ">=0.14.10"
      },
      "funding": {
@@ -1647,13 +1647,13 @@
      }
    },
    "node_modules/@vueuse/integrations": {
-      "version": "11.1.0",
-      "resolved": "https://registry.npmjs.org/@vueuse/integrations/-/integrations-11.1.0.tgz",
-      "integrity": "sha512-O2ZgrAGPy0qAjpoI2YR3egNgyEqwG85fxfwmA9BshRIGjV4G6yu6CfOPpMHAOoCD+UfsIl7Vb1bXJ6ifrHYDDA==",
+      "version": "11.2.0",
+      "resolved": "https://registry.npmjs.org/@vueuse/integrations/-/integrations-11.2.0.tgz",
+      "integrity": "sha512-zGXz3dsxNHKwiD9jPMvR3DAxQEOV6VWIEYTGVSB9PNpk4pTWR+pXrHz9gvXWcP2sTk3W2oqqS6KwWDdntUvNVA==",
      "license": "MIT",
      "dependencies": {
-        "@vueuse/core": "11.1.0",
-        "@vueuse/shared": "11.1.0",
+        "@vueuse/core": "11.2.0",
+        "@vueuse/shared": "11.2.0",
        "vue-demi": ">=0.14.10"
      },
      "funding": {
@@ -1739,18 +1739,18 @@
      }
    },
    "node_modules/@vueuse/metadata": {
-      "version": "11.1.0",
-      "resolved": "https://registry.npmjs.org/@vueuse/metadata/-/metadata-11.1.0.tgz",
-      "integrity": "sha512-l9Q502TBTaPYGanl1G+hPgd3QX5s4CGnpXriVBR5fEZ/goI6fvDaVmIl3Td8oKFurOxTmbXvBPSsgrd6eu6HYg==",
+      "version": "11.2.0",
+      "resolved": "https://registry.npmjs.org/@vueuse/metadata/-/metadata-11.2.0.tgz",
+      "integrity": "sha512-L0ZmtRmNx+ZW95DmrgD6vn484gSpVeRbgpWevFKXwqqQxW9hnSi2Ppuh2BzMjnbv4aJRiIw8tQatXT9uOB23dQ==",
      "license": "MIT",
      "funding": {
        "url": "https://github.com/sponsors/antfu"
      }
    },
    "node_modules/@vueuse/shared": {
-      "version": "11.1.0",
-      "resolved": "https://registry.npmjs.org/@vueuse/shared/-/shared-11.1.0.tgz",
-      "integrity": "sha512-YUtIpY122q7osj+zsNMFAfMTubGz0sn5QzE5gPzAIiCmtt2ha3uQUY1+JPyL4gRCTsLPX82Y9brNbo/aqlA91w==",
+      "version": "11.2.0",
+      "resolved": "https://registry.npmjs.org/@vueuse/shared/-/shared-11.2.0.tgz",
+      "integrity": "sha512-VxFjie0EanOudYSgMErxXfq6fo8vhr5ICI+BuE3I9FnX7ePllEsVrRQ7O6Q1TLgApeLuPKcHQxAXpP+KnlrJsg==",
      "license": "MIT",
      "dependencies": {
        "vue-demi": ">=0.14.10"
@@ -6520,9 +6520,9 @@
      }
    },
    "node_modules/pinia": {
-      "version": "2.2.4",
-      "resolved": "https://registry.npmjs.org/pinia/-/pinia-2.2.4.tgz",
-      "integrity": "sha512-K7ZhpMY9iJ9ShTC0cR2+PnxdQRuwVIsXDO/WIEV/RnMC/vmSoKDTKW/exNQYPI+4ij10UjXqdNiEHwn47McANQ==",
+      "version": "2.2.6",
+      "resolved": "https://registry.npmjs.org/pinia/-/pinia-2.2.6.tgz",
+      "integrity": "sha512-vIsR8JkDN5Ga2vAxqOE2cJj4VtsHnzpR1Fz30kClxlh0yCHfec6uoMeM3e/ddqmwFUejK3NlrcQa/shnpyT4hA==",
      "license": "MIT",
      "dependencies": {
        "@vue/devtools-api": "^6.6.3",
@@ -6534,7 +6534,7 @@
      "peerDependencies": {
        "@vue/composition-api": "^1.4.0",
        "typescript": ">=4.4.4",
-        "vue": "^2.6.14 || ^3.3.0"
+        "vue": "^2.6.14 || ^3.5.11"
      },
      "peerDependenciesMeta": {
        "@vue/composition-api": {
@@ -6768,9 +6768,9 @@
      }
    },
    "node_modules/quasar": {
-      "version": "2.17.1",
-      "resolved": "https://registry.npmjs.org/quasar/-/quasar-2.17.1.tgz",
-      "integrity": "sha512-4tnprxb+oEFChqcHGeQnprTmsr9gRK/R4N2O6Gg0AxpP22G9ttKeeqhH7+Soyjdi9RUcc6d5Y49T6rRg4hGJXw==",
+      "version": "2.17.2",
+      "resolved": "https://registry.npmjs.org/quasar/-/quasar-2.17.2.tgz",
+      "integrity": "sha512-wycJcrjXsNxyNFYaw7eviKAo0I3LaQap0GCHXUEiaAi4H+a9LJbgkoZSZKCP4M0UO4iVnkWVkQzsFodyHk5uHQ==",
      "license": "MIT",
      "engines": {
        "node": ">= 10.18.1",
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "web",
-  "version": "0.101.49",
+  "version": "0.101.50",
  "private": true,
  "productName": "Tactical RMM",
  "scripts": {
@@ -10,17 +10,17 @@
    "format": "prettier --write \"**/*.{js,ts,vue,,html,md,json}\" --ignore-path .gitignore"
  },
  "dependencies": {
-    "@quasar/extras": "1.16.12",
-    "@vueuse/core": "11.1.0",
-    "@vueuse/integrations": "11.1.0",
-    "@vueuse/shared": "11.1.0",
+    "@quasar/extras": "1.16.13",
+    "@vueuse/core": "11.2.0",
+    "@vueuse/integrations": "11.2.0",
+    "@vueuse/shared": "11.2.0",
    "apexcharts": "3.54.1",
    "axios": "1.7.7",
    "dotenv": "16.4.5",
    "monaco-editor": "0.50.0",
-    "pinia": "2.2.4",
+    "pinia": "2.2.6",
    "qrcode": "1.5.4",
-    "quasar": "2.17.1",
+    "quasar": "2.17.2",
    "vue": "3.5.12",
    "vue-router": "4.4.5",
    "vue3-apexcharts": "1.7.0",
--- a/quasar.config.js
+++ b/quasar.config.js
@@ -8,6 +8,7 @@
 // Configuration for your app
 // https://v2.quasar.dev/quasar-cli-vite/quasar-config-js

+const { mergeConfig } = require("vite");
 const { configure } = require("quasar/wrappers");
 const path = require("path");
 require("dotenv").config();
@@ -78,9 +79,22 @@ module.exports = configure(function (/* ctx */) {
      // polyfillModulePreload: true,
      distDir: "dist/",

-      // extendViteConf (viteConf) {},
+      /* eslint-disable quotes */
+      // eslint-disable-next-line @typescript-eslint/no-unused-vars
+      extendViteConf(viteConf, { isServer, isClient }) {
+        viteConf.build = mergeConfig(viteConf.build, {
+          chunkSizeWarningLimit: 1600,
+          rollupOptions: {
+            output: {
+              entryFileNames: `[hash].js`,
+              chunkFileNames: `[hash].js`,
+              assetFileNames: `[hash].[ext]`,
+            },
+          },
+        });
+      },
+      /* eslint-enable quotes */
      // viteVuePluginOptions: {},
-
      // vitePlugins: []
    },

--- a/src/api/accounts.js
+++ b/src/api/accounts.js
@@ -31,6 +31,34 @@ export async function resetTwoFactor() {
  }
 }

+// sessions api
+export async function fetchUserSessions(id) {
+  try {
+    const { data } = await axios.get(`${baseUrl}/users/${id}/sessions/`);
+    return data;
+  } catch (e) {
+    console.error(e);
+  }
+}
+
+export async function deleteAllUserSessions(id) {
+  try {
+    const { data } = await axios.delete(`${baseUrl}/users/${id}/sessions/`);
+    return data;
+  } catch (e) {
+    console.error(e);
+  }
+}
+
+export async function deleteUserSession(id) {
+  try {
+    const { data } = await axios.delete(`${baseUrl}/sessions/${id}/`);
+    return data;
+  } catch (e) {
+    console.error(e);
+  }
+}
+
 // role api function
 export async function fetchRoles(params = {}) {
  try {
--- a/src/api/core.ts
+++ b/src/api/core.ts
@@ -8,8 +8,15 @@ import type {
  TestRunURLActionResponse,
 } from "@/types/core/urlactions";

+import type { CoreSetting } from "@/types/core/settings";
+
 const baseUrl = "/core";

+export async function fetchCoreSettings(params = {}): Promise<CoreSetting> {
+  const { data } = await axios.get("/core/settings/", { params: params });
+  return data;
+}
+
 export async function fetchDashboardInfo(params = {}) {
  const { data } = await axios.get(`${baseUrl}/dashinfo/`, { params: params });
  return data;
--- a/src/boot/axios.js
+++ b/src/boot/axios.js
@@ -21,6 +21,7 @@ export function setErrorMessage(data, message) {

 export default function ({ app, router }) {
  app.config.globalProperties.$axios = axios;
+  axios.defaults.withCredentials = true;

  axios.interceptors.request.use(
    function (config) {
@@ -65,12 +66,20 @@ export default function ({ app, router }) {
      // perms
      else if (error.response.status === 403) {
        // don't notify user if method is GET
-        if (error.config.method === "get" || error.config.method === "patch")
+        if (
+          error.config.method === "get" ||
+          error.config.method === "patch" ||
+          error.config.url === "accounts/ssoproviders/token/"
+        )
          return Promise.reject({ ...error });
        text = error.response.data.detail;
      }
      // catch all for other 400 error messages
-      else if (error.response.status >= 400 && error.response.status < 500) {
+      else if (
+        error.response.status >= 400 &&
+        error.response.status < 500 &&
+        error.response.status !== 423
+      ) {
        if (error.config.responseType === "blob") {
          text = (await error.response.data.text()).replace(/^"|"$/g, "");
        } else if (error.response.data.non_field_errors) {
@@ -85,7 +94,7 @@ export default function ({ app, router }) {
        }
      }

-      if (text || error.response) {
+      if ((text || error.response) && error.response.status !== 423) {
        Notify.create({
          color: "negative",
          message: text ? text : "",
--- a/src/components/AdminManager.vue
+++ b/src/components/AdminManager.vue
@@ -1,159 +1,202 @@
 <template>
-  <div style="width: 900px; max-width: 90vw">
-    <q-card>
-      <q-bar>
+  <q-card style="width: 65vw; max-width: 70vw; min-height: 50vh">
+    <q-bar>
+      <q-btn
+        ref="refresh"
+        @click="getUsers"
+        class="q-mr-sm"
+        dense
+        flat
+        push
+        icon="refresh"
+      />User Administration
+      <q-space />
+      <q-btn dense flat icon="close" v-close-popup>
+        <q-tooltip class="bg-white text-primary">Close</q-tooltip>
+      </q-btn>
+    </q-bar>
+    <div class="q-pa-md">
+      <div class="q-gutter-sm">
        <q-btn
-          ref="refresh"
-          @click="getUsers"
-          class="q-mr-sm"
+          ref="new"
+          label="New"
          dense
          flat
          push
-          icon="refresh"
-        />User Administration
-        <q-space />
-        <q-btn dense flat icon="close" v-close-popup>
-          <q-tooltip class="bg-white text-primary">Close</q-tooltip>
-        </q-btn>
-      </q-bar>
-      <div class="q-pa-md">
-        <div class="q-gutter-sm">
-          <q-btn
-            ref="new"
-            label="New"
-            dense
-            flat
-            push
-            unelevated
-            no-caps
-            icon="add"
-            @click="showAddUserModal"
-          />
-        </div>
-        <q-table
-          dense
-          :rows="users"
-          :columns="columns"
-          v-model:pagination="pagination"
-          row-key="id"
-          binary-state-sort
-          hide-pagination
-          virtual-scroll
-        >
-          <!-- header slots -->
-          <template v-slot:header-cell-is_active="props">
-            <q-th :props="props" auto-width>
-              <q-icon name="power_settings_new" size="1.5em">
-                <q-tooltip>Enable User</q-tooltip>
-              </q-icon>
-            </q-th>
-          </template>
-
-          <!-- No data Slot -->
-          <template v-slot:no-data>
-            <div class="full-width row flex-center q-gutter-sm">
-              <span v-if="users.length === 0">No Users</span>
-            </div>
-          </template>
-
-          <!-- body slots -->
-          <template v-slot:body="props">
-            <q-tr
-              :props="props"
-              class="cursor-pointer"
-              @dblclick="showEditUserModal(props.row)"
-            >
-              <!-- context menu -->
-              <q-menu context-menu>
-                <q-list dense style="min-width: 200px">
-                  <q-item
-                    clickable
-                    v-close-popup
-                    @click="showEditUserModal(props.row)"
-                  >
-                    <q-item-section side>
-                      <q-icon name="edit" />
-                    </q-item-section>
-                    <q-item-section>Edit</q-item-section>
-                  </q-item>
-                  <q-item
-                    clickable
-                    v-close-popup
-                    @click="deleteUser(props.row)"
-                    :disable="props.row.username === logged_in_user"
-                  >
-                    <q-item-section side>
-                      <q-icon name="delete" />
-                    </q-item-section>
-                    <q-item-section>Delete</q-item-section>
-                  </q-item>
-
-                  <q-separator></q-separator>
-
-                  <q-item
-                    clickable
-                    v-close-popup
-                    @click="ResetPassword(props.row)"
-                    id="context-reset"
-                  >
-                    <q-item-section side>
-                      <q-icon name="autorenew" />
-                    </q-item-section>
-                    <q-item-section>Reset Password</q-item-section>
-                  </q-item>
-
-                  <q-item
-                    clickable
-                    v-close-popup
-                    @click="reset2FA(props.row)"
-                    id="context-reset"
-                  >
-                    <q-item-section side>
-                      <q-icon name="autorenew" />
-                    </q-item-section>
-                    <q-item-section>Reset Two-Factor Auth</q-item-section>
-                  </q-item>
-
-                  <q-separator></q-separator>
-
-                  <q-item clickable v-close-popup>
-                    <q-item-section>Close</q-item-section>
-                  </q-item>
-                </q-list>
-              </q-menu>
-              <!-- enabled checkbox -->
-              <q-td>
-                <q-checkbox
-                  dense
-                  @update:model-value="toggleEnabled(props.row)"
-                  v-model="props.row.is_active"
-                  :disable="props.row.username === logged_in_user"
-                />
-              </q-td>
-              <q-td>{{ props.row.username }}</q-td>
-              <q-td>{{ props.row.first_name }} {{ props.row.last_name }}</q-td>
-              <q-td>{{ props.row.email }}</q-td>
-              <q-td v-if="props.row.last_login">{{
-                formatDate(props.row.last_login)
-              }}</q-td>
-              <q-td v-else>Never</q-td>
-              <q-td>{{ props.row.last_login_ip }}</q-td>
-            </q-tr>
-          </template>
-        </q-table>
+          unelevated
+          no-caps
+          icon="add"
+          @click="showAddUserModal"
+        />
      </div>
-    </q-card>
-  </div>
+      <q-table
+        dense
+        :rows="users"
+        :columns="columns"
+        v-model:pagination="pagination"
+        row-key="id"
+        binary-state-sort
+        hide-pagination
+        virtual-scroll
+      >
+        <!-- header slots -->
+        <template v-slot:header-cell-is_active="props">
+          <q-th :props="props" auto-width>
+            <q-icon name="power_settings_new" size="1.5em">
+              <q-tooltip>Enable User</q-tooltip>
+            </q-icon>
+          </q-th>
+        </template>
+
+        <template v-slot:header-cell-sso="props">
+          <q-th :props="props" auto-width></q-th>
+        </template>
+
+        <!-- No data Slot -->
+        <template v-slot:no-data>
+          <div class="full-width row flex-center q-gutter-sm">
+            <span v-if="users.length === 0">No Users</span>
+          </div>
+        </template>
+
+        <!-- body slots -->
+        <template v-slot:body="props">
+          <q-tr
+            :props="props"
+            class="cursor-pointer"
+            @dblclick="showEditUserModal(props.row)"
+          >
+            <!-- context menu -->
+            <q-menu context-menu>
+              <q-list dense style="min-width: 200px">
+                <q-item
+                  clickable
+                  v-close-popup
+                  @click="showEditUserModal(props.row)"
+                >
+                  <q-item-section side>
+                    <q-icon name="edit" />
+                  </q-item-section>
+                  <q-item-section>Edit</q-item-section>
+                </q-item>
+                <q-item
+                  clickable
+                  v-close-popup
+                  @click="deleteUser(props.row)"
+                  :disable="props.row.username === logged_in_user"
+                >
+                  <q-item-section side>
+                    <q-icon name="delete" />
+                  </q-item-section>
+                  <q-item-section>Delete</q-item-section>
+                </q-item>
+
+                <q-separator></q-separator>
+
+                <q-item
+                  clickable
+                  v-close-popup
+                  @click="ResetPassword(props.row)"
+                  id="context-reset"
+                  :disable="props.row.social_accounts.length !== 0"
+                >
+                  <q-item-section side>
+                    <q-icon name="autorenew" />
+                  </q-item-section>
+                  <q-item-section>Reset Password</q-item-section>
+                </q-item>
+
+                <q-item
+                  clickable
+                  v-close-popup
+                  @click="reset2FA(props.row)"
+                  id="context-reset"
+                  :disable="props.row.social_accounts.length !== 0"
+                >
+                  <q-item-section side>
+                    <q-icon name="autorenew" />
+                  </q-item-section>
+                  <q-item-section>Reset Two-Factor Auth</q-item-section>
+                </q-item>
+
+                <q-separator></q-separator>
+
+                <q-item
+                  clickable
+                  v-close-popup
+                  @click="showSSOAccounts(props.row)"
+                  id="context-reset"
+                  :disable="props.row.social_accounts.length === 0"
+                >
+                  <q-item-section side>
+                    <q-icon name="groups" />
+                  </q-item-section>
+                  <q-item-section>Show Connected SSO Accounts</q-item-section>
+                </q-item>
+
+                <q-item
+                  clickable
+                  v-close-popup
+                  @click="showSessions(props.row)"
+                  id="context-reset"
+                >
+                  <q-item-section side>
+                    <q-icon name="groups" />
+                  </q-item-section>
+                  <q-item-section>Show Active Sessions</q-item-section>
+                </q-item>
+
+                <q-separator></q-separator>
+
+                <q-item clickable v-close-popup>
+                  <q-item-section>Close</q-item-section>
+                </q-item>
+              </q-list>
+            </q-menu>
+            <!-- enabled checkbox -->
+            <q-td>
+              <q-checkbox
+                dense
+                @update:model-value="toggleEnabled(props.row)"
+                v-model="props.row.is_active"
+                :disable="props.row.username === logged_in_user"
+              />
+            </q-td>
+            <q-td>
+              <q-chip
+                v-if="props.row.social_accounts.length > 0"
+                color="primary"
+                dense
+                >SSO</q-chip
+              >
+            </q-td>
+            <q-td>{{ props.row.username }}</q-td>
+            <q-td>{{ props.row.first_name }} {{ props.row.last_name }}</q-td>
+            <q-td>{{ props.row.email }}</q-td>
+            <q-td v-if="props.row.last_login">{{
+              formatDate(props.row.last_login)
+            }}</q-td>
+            <q-td v-else>Never</q-td>
+            <q-td>{{ props.row.last_login_ip }}</q-td>
+          </q-tr>
+        </template>
+      </q-table>
+    </div>
+  </q-card>
 </template>

 <script>
 import mixins from "@/mixins/mixins";
 import { computed } from "vue";
 import { useStore } from "vuex";
+import { useQuasar } from "quasar";
+
 import { mapState as piniaMapState } from "pinia";
 import { useAuthStore } from "@/stores/auth";
 import UserForm from "@/components/modals/admin/UserForm.vue";
 import UserResetPasswordForm from "@/components/modals/admin/UserResetPasswordForm.vue";
+import SSOAccountsTable from "@/ee/sso/components/SSOAccountsTable.vue";
+import UserSessionsTable from "@/components/accounts/UserSessionsTable.vue";

 export default {
  name: "AdminManager",
@@ -163,8 +206,30 @@ export default {
    const store = useStore();
    const formatDate = computed(() => store.getters.formatDate);

+    const $q = useQuasar();
+
+    function showSSOAccounts(user) {
+      $q.dialog({
+        component: SSOAccountsTable,
+        componentProps: {
+          user,
+        },
+      });
+    }
+
+    async function showSessions(user) {
+      $q.dialog({
+        component: UserSessionsTable,
+        componentProps: {
+          user,
+        },
+      });
+    }
+
    return {
      formatDate,
+      showSSOAccounts,
+      showSessions,
    };
  },
  data() {
@@ -177,6 +242,13 @@ export default {
          field: "is_active",
          align: "left",
        },
+        {
+          name: "sso",
+          label: "",
+          field: "sso",
+          align: "left",
+          sortable: true,
+        },
        {
          name: "username",
          label: "Username",
--- a/src/components/accounts/UserSessionsTable.vue
+++ b/src/components/accounts/UserSessionsTable.vue
@@ -0,0 +1,151 @@
+<template>
+  <q-dialog ref="dialogRef" @hide="onDialogHide">
+    <q-card style="width: 60vw; max-width: 90vw; min-height: 40vh">
+      <q-bar>
+        User Sessions for {{ user.username }}
+        <q-space />
+        <q-btn v-close-popup dense flat icon="close">
+          <q-tooltip class="bg-white text-primary">Close</q-tooltip>
+        </q-btn>
+      </q-bar>
+      <q-table
+        dense
+        :table-class="{
+          'table-bgcolor': !$q.dark.isActive,
+          'table-bgcolor-dark': $q.dark.isActive,
+        }"
+        :style="{ 'max-height': `${$q.screen.height - 24}px` }"
+        class="tbl-sticky"
+        :rows="sessions"
+        :columns="columns"
+        :loading="loading"
+        :pagination="{ rowsPerPage: 0, sortBy: 'display', descending: true }"
+        row-key="id"
+        binary-state-sort
+        virtual-scroll
+        :rows-per-page-options="[0]"
+      >
+        <template #top>
+          <q-space />
+          <q-btn
+            label="Remove All Sessions"
+            @click="removeAllSessions"
+            size="sm"
+            color="negative"
+          />
+        </template>
+        <template #body="props">
+          <q-tr>
+            <!-- rows -->
+            <td>{{ formatDate(props.row.created) }}</td>
+            <td>{{ formatDate(props.row.expiry) }}</td>
+            <td>
+              <q-btn
+                size="sm"
+                @click="removeSession(props.row)"
+                label="Disconnect"
+                color="negative"
+              ></q-btn>
+            </td>
+          </q-tr>
+        </template>
+      </q-table>
+    </q-card>
+  </q-dialog>
+</template>
+
+<script setup lang="ts">
+// composition imports
+import { onMounted, ref } from "vue";
+import { useDialogPluginComponent, useQuasar, type QTableColumn } from "quasar";
+import { notifySuccess } from "@/utils/notify";
+import { formatDate } from "@/utils/format";
+import {
+  fetchUserSessions,
+  deleteAllUserSessions,
+  deleteUserSession,
+} from "@/api/accounts";
+
+//types
+import type { SSOUser } from "@/ee/sso/types/sso";
+import type { AuthToken } from "@/types/accounts";
+
+const columns: QTableColumn[] = [
+  {
+    name: "created",
+    label: "Created",
+    field: "created",
+    align: "left",
+    sortable: true,
+  },
+  {
+    name: "expiry",
+    label: "Expires",
+    field: "expiry",
+    align: "left",
+    sortable: true,
+  },
+  {
+    name: "action",
+    label: "",
+    field: "action",
+    align: "left",
+    sortable: true,
+  },
+];
+
+// emits
+defineEmits([...useDialogPluginComponent.emits]);
+
+// props
+const props = defineProps<{
+  user: SSOUser;
+}>();
+
+const { dialogRef, onDialogHide } = useDialogPluginComponent();
+const $q = useQuasar();
+
+const sessions = ref([] as AuthToken[]);
+const loading = ref(false);
+
+function removeSession(token: AuthToken) {
+  $q.dialog({
+    title: `Disconnect session for ${token.user}?`,
+    message: "This user will be signed out immediately.",
+    cancel: true,
+    ok: { label: "Delete", color: "negative" },
+  }).onOk(async () => {
+    loading.value = true;
+    try {
+      await deleteUserSession(token.digest);
+      notifySuccess("Login session deleted successfully");
+    } finally {
+      loading.value = false;
+      await getSessions();
+    }
+  });
+}
+
+function removeAllSessions() {
+  $q.dialog({
+    title: `Disconnect all sessions for ${props.user.username}?`,
+    cancel: true,
+    ok: { label: "Delete", color: "negative" },
+  }).onOk(async () => {
+    loading.value = true;
+    try {
+      await deleteAllUserSessions(props.user.id);
+      notifySuccess("Login sessions deleted successfully");
+    } finally {
+      loading.value = false;
+      onDialogHide();
+    }
+  });
+}
+
+async function getSessions() {
+  sessions.value = await fetchUserSessions(props.user.id);
+}
+
+onMounted(getSessions);
+</script>
--- a/src/components/agents/AutomatedTasksTab.vue
+++ b/src/components/agents/AutomatedTasksTab.vue
@@ -1,8 +1,5 @@
 <template>
  <div v-if="!selectedAgent" class="q-pa-sm">No agent selected</div>
-  <div v-else-if="agentPlatform.toLowerCase() !== 'windows'" class="q-pa-sm">
-    Only supported for Windows agents at this time
-  </div>
  <div v-else>
    <q-table
      dense
@@ -514,6 +511,7 @@ export default {
        component: AutomatedTaskForm,
        componentProps: {
          parent: { agent: selectedAgent.value },
+          plat: agentPlatform.value,
        },
      }).onOk(() => {
        getTasks();
@@ -528,6 +526,7 @@ export default {
        componentProps: {
          task: task,
          parent: { agent: selectedAgent.value },
+          plat: agentPlatform.value,
        },
      }).onOk(() => {
        getTasks();
--- a/src/components/modals/agents/RunScript.vue
+++ b/src/components/modals/agents/RunScript.vue
@@ -140,9 +140,9 @@
          />
          <q-checkbox v-model="state.save_all_output" label="Save all output" />
        </q-card-section>
-        <q-card-section v-if="agent.plat === 'windows'">
+        <q-card-section>
          <q-checkbox
-            v-if="!state.run_on_server"
+            v-if="agent.plat === 'windows' && !state.run_on_server"
            v-model="state.run_as_user"
            label="Run As User"
          >
--- a/src/components/modals/alerts/AlertsOverview.vue
+++ b/src/components/modals/alerts/AlertsOverview.vue
@@ -249,6 +249,20 @@ export default {
          sortable: true,
          format: (a) => this.formatDate(a),
        },
+        {
+          name: "client",
+          label: "Client",
+          field: "client",
+          align: "left",
+          sortable: true,
+        },
+        {
+          name: "site",
+          label: "Site",
+          field: "site",
+          align: "left",
+          sortable: true,
+        },
        {
          name: "hostname",
          label: "Agent",
--- a/src/components/modals/coresettings/EditCoreSettings.vue
+++ b/src/components/modals/coresettings/EditCoreSettings.vue
@@ -13,6 +13,7 @@
          <q-tab name="webhooks" label="Web Hooks" />
          <q-tab name="retention" label="Retention" />
          <q-tab name="apikeys" label="API Keys" />
+          <q-tab name="sso" label="Single Sign-On (SSO)" />
          <!-- <q-tab name="openai" label="Open AI" /> -->
        </q-tabs>
      </template>
@@ -636,6 +637,11 @@
                <APIKeysTable />
              </q-tab-panel>

+              <!-- sso integration -->
+              <q-tab-panel name="sso">
+                <SSOProvidersTable />
+              </q-tab-panel>
+
              <!-- Open AI -->
              <!-- <q-tab-panel name="openai">
                <div class="text-subtitle2">Open AI</div>
@@ -685,7 +691,8 @@
              v-show="
                tab !== 'customfields' &&
                tab !== 'keystore' &&
-                tab !== 'urlactions'
+                tab !== 'urlactions' &&
+                tab !== 'sso'
              "
              label="Save"
              color="primary"
@@ -722,6 +729,7 @@ import CustomFields from "@/components/modals/coresettings/CustomFields.vue";
 import KeyStoreTable from "@/components/modals/coresettings/KeyStoreTable.vue";
 import URLActionsTable from "@/components/modals/coresettings/URLActionsTable.vue";
 import APIKeysTable from "@/components/core/APIKeysTable.vue";
+import SSOProvidersTable from "@/ee/sso/components/SSOProvidersTable.vue";

 export default {
  name: "EditCoreSettings",
@@ -731,7 +739,7 @@ export default {
    KeyStoreTable,
    URLActionsTable,
    APIKeysTable,
-    // ServerTasksTable,
+    SSOProvidersTable,
  },
  mixins: [mixins],
  data() {
@@ -767,6 +775,13 @@ export default {
      return this.$store.state.hosted;
    },
  },
+  watch: {
+    tab(newTab, oldTab) {
+      if (oldTab === "sso") {
+        this.getCoreSettings();
+      }
+    },
+  },
  methods: {
    openURL(url) {
      openURL(url);
--- a/src/components/tasks/AutomatedTaskForm.vue
+++ b/src/components/tasks/AutomatedTaskForm.vue
@@ -158,7 +158,7 @@
                  v-model="command"
                  dense
                  filled
-                  class="col-7"
+                  class="col-5"
                />
                <q-input
                  v-if="actionType === 'cmd'"
@@ -171,12 +171,14 @@
                />
                <q-option-group
                  v-if="actionType === 'cmd'"
-                  class="col-2 q-pl-sm"
+                  class="col-4 q-pl-sm"
                  inline
                  v-model="shell"
                  :options="[
-                    { label: 'Batch', value: 'cmd' },
+                    { label: 'CMD', value: 'cmd' },
                    { label: 'Powershell', value: 'powershell' },
+                    { label: 'Bash', value: '/bin/bash' },
+                    { label: 'Custom', value: 'custom' },
                  ]"
                />
                <q-btn
@@ -186,10 +188,20 @@
                  flat
                  dense
                  icon="add"
+                  label="Add"
                  color="primary"
                />
              </div>
            </q-form>
+            <div v-if="shell === 'custom'" class="col-5">
+              <q-input
+                v-model="custom_shell"
+                outlined
+                label="Custom shell"
+                stack-label
+                placeholder="/usr/bin/python3"
+              />
+            </div>
            <div class="text-subtitle2 q-pa-sm">
              Actions:
              <q-checkbox
@@ -305,6 +317,7 @@

                <!-- expires on input -->
                <q-input
+                  v-if="!isPosix"
                  class="col-6 q-pa-sm"
                  type="datetime-local"
                  dense
@@ -333,7 +346,10 @@
              </q-card-section>

              <!-- daily options -->
-              <q-card-section v-if="state.task_type === 'daily'" class="row">
+              <q-card-section
+                v-if="!isPosix && state.task_type === 'daily'"
+                class="row"
+              >
                <!-- daily interval -->
                <q-input
                  :rules="[
@@ -360,6 +376,7 @@
              <q-card-section v-if="state.task_type === 'weekly'" class="row">
                <!-- weekly interval -->
                <q-input
+                  v-if="!isPosix"
                  :rules="[
                    (val) => !!val || '*Required',
                    (val) =>
@@ -602,8 +619,11 @@
                "
                class="row"
              >
-                <div class="col-12 text-h6">Advanced Settings</div>
+                <div v-if="!isPosix" class="col-12 text-h6">
+                  Advanced Settings (Windows only)
+                </div>
                <q-input
+                  v-if="!isPosix"
                  class="col-6 q-pa-sm"
                  dense
                  label="Repeat task every"
@@ -620,6 +640,7 @@
                />

                <q-input
+                  v-if="!isPosix"
                  :disable="!state.task_repetition_interval"
                  class="col-6 q-pa-sm"
                  dense
@@ -643,6 +664,7 @@
                />

                <q-checkbox
+                  v-if="!isPosix"
                  :disable="!state.task_repetition_interval"
                  class="col-6 q-pa-sm"
                  dense
@@ -652,6 +674,7 @@
                <div class="col-6"></div>

                <q-input
+                  v-if="!isPosix"
                  class="col-6 q-pa-sm"
                  dense
                  label="Random task delay"
@@ -668,6 +691,7 @@
                />
                <div class="col-6"></div>
                <q-checkbox
+                  v-if="!isPosix"
                  :disable="!state.expire_date"
                  class="col-6 q-pa-sm"
                  dense
@@ -678,6 +702,7 @@
                </q-checkbox>
                <div class="col-6"></div>
                <q-checkbox
+                  v-if="!isPosix"
                  :disable="state.task_type === 'runonce'"
                  class="col-6 q-pa-sm"
                  dense
@@ -688,6 +713,7 @@
                <div class="col-6"></div>

                <tactical-dropdown
+                  v-if="!isPosix"
                  class="col-6 q-pa-sm"
                  label="Task instance policy"
                  :options="taskInstancePolicyOptions"
@@ -755,7 +781,7 @@

 <script>
 // composition imports
-import { ref, watch, onMounted, defineComponent } from "vue";
+import { computed, ref, watch, onMounted, defineComponent } from "vue";
 import { useDialogPluginComponent } from "quasar";
 import draggable from "vuedraggable";
 import { saveTask, updateTask } from "@/api/tasks";
@@ -850,6 +876,7 @@ export default defineComponent({
  props: {
    parent: Object, // parent policy or agent for task
    task: Object, // only for editing
+    plat: String,
  },
  setup(props) {
    // setup quasar dialog
@@ -873,6 +900,10 @@ export default defineComponent({
    const { checkOptions, getCheckOptions } = useCheckDropdown(props.parent);
    const { customFieldOptions } = useCustomFieldDropdown({ onMount: true });

+    const isPosix = computed(() => {
+      return !!props.plat && props.plat !== "windows";
+    });
+
    // add task logic
    const task = props.task
      ? ref(Object.assign({}, props.task))
@@ -906,6 +937,7 @@ export default defineComponent({
    const actionType = ref("script");
    const command = ref("");
    const shell = ref("cmd");
+    const custom_shell = ref("");
    const monthlyType = ref("days");
    const collector = ref(false);
    const loading = ref(false);
@@ -960,10 +992,16 @@ export default defineComponent({
          env_vars: defaultEnvVars.value,
        });
      } else if (actionType.value === "cmd") {
+        let tempShell = shell.value;
+        if (shell.value === "custom" && !!custom_shell.value) {
+          tempShell = custom_shell.value;
+        } else {
+          tempShell = shell.value;
+        }
        task.value.actions.push({
          type: "cmd",
          command: command.value,
-          shell: shell.value,
+          shell: tempShell,
          timeout: defaultTimeout.value,
        });
      }
@@ -1138,6 +1176,7 @@ export default defineComponent({
      actionType,
      command,
      shell,
+      custom_shell,
      allMonthsCheckbox,
      allMonthDaysCheckbox,
      allWeekDaysCheckbox,
@@ -1151,6 +1190,7 @@ export default defineComponent({
      scriptOptions,
      checkOptions,
      customFieldOptions,
+      isPosix,

      // non-reactive data
      validateTimePeriod,
--- a/src/composables/accounts.js
+++ b/src/composables/accounts.js
@@ -1,5 +1,5 @@
 import { ref, onMounted } from "vue";
-import { fetchUsers } from "@/api/accounts";
+import { fetchUsers, fetchRoles } from "@/api/accounts";
 import { formatUserOptions } from "@/utils/format";

 export function useUserDropdown(onMount = false) {
@@ -44,3 +44,26 @@ export function useUserDropdown(onMount = false) {
    getDynamicUserOptions,
  };
 }
+
+export function useRoleDropdown(opts = {}) {
+  const roleOptions = ref([]);
+  async function getRoleOptions() {
+    const roles = await fetchRoles();
+    roleOptions.value = roles.map((role) => ({
+      value: role.id,
+      label: role.name,
+    }));
+  }
+
+  if (opts.onMount) {
+    onMounted(getRoleOptions);
+  }
+
+  return {
+    //data
+    roleOptions,
+
+    //methods
+    getRoleOptions,
+  };
+}
--- a/src/ee/LICENSE.md
+++ b/src/ee/LICENSE.md
@@ -4,7 +4,7 @@ Copyright (c) 2023 Amidaware Inc. All rights reserved.

 This Agreement is entered into between the licensee ("You" or the "Licensee") and Amidaware Inc. ("Amidaware") and governs the use of the enterprise features of the Tactical RMM Software (hereinafter referred to as the "Software").

-The EE features of the Software, including but not limited to Reporting and White-labeling, are exclusively contained within directories named "ee," "enterprise," or "premium" in Amidaware's repositories, or in any files bearing the EE License header. The use of the Software is also governed by the terms and conditions set forth in the Tactical RMM License, available at https://license.tacticalrmm.com, which terms are incorporated herein by reference.
+The EE features of the Software, including but not limited to SSO (Single Sign-On), Reporting and White-labeling, are exclusively contained within directories named "ee," "enterprise," or "premium" in Amidaware's repositories, or in any files bearing the EE License header. The use of the Software is also governed by the terms and conditions set forth in the Tactical RMM License, available at https://license.tacticalrmm.com, which terms are incorporated herein by reference.

 ## License Grant

--- a/src/ee/sso/api/sso.ts
+++ b/src/ee/sso/api/sso.ts
@@ -0,0 +1,144 @@
+/*
+Copyright (c) 2023-present Amidaware Inc.
+This file is subject to the EE License Agreement.
+For details, see: https://license.tacticalrmm.com/ee
+*/
+
+import axios from "axios";
+import { getCookie } from "@/ee/sso/utils/cookies";
+import { getBaseUrl } from "@/boot/axios";
+import { useStorage } from "@vueuse/core";
+
+import type {
+  SSOAccount,
+  SSOProvider,
+  SSOSettingsType,
+} from "@/ee/sso/types/sso";
+
+const baseUrl = "accounts";
+
+interface FormData {
+  provider: string;
+  process: string;
+  callback_url: string;
+  csrfmiddlewaretoken: string;
+}
+
+export function getCSRFToken() {
+  return getCookie("csrftoken");
+}
+
+// needed for sso provider redirect
+function postForm(url: string, data: FormData) {
+  const f = document.createElement("form");
+  f.method = "POST";
+  f.action = url;
+
+  for (const key in data) {
+    const d = document.createElement("input");
+    d.type = "hidden";
+    d.name = key;
+    d.value = data[key];
+    f.appendChild(d);
+  }
+  document.body.appendChild(f);
+  f.submit();
+}
+
+// sso providers
+
+export async function fetchSSOProviders(): Promise<SSOProvider[]> {
+  const { data } = await axios.get(`${baseUrl}/ssoproviders/`);
+  return data;
+}
+
+export async function addSSOProvider(payload: SSOProvider) {
+  const { data } = await axios.post(`${baseUrl}/ssoproviders/`, payload);
+  return data;
+}
+
+export async function editSSOProvider(id: number, payload: SSOProvider) {
+  const { data } = await axios.put(`${baseUrl}/ssoproviders/${id}/`, payload);
+  return data;
+}
+
+export async function removeSSOProvider(id: number) {
+  const { data } = await axios.delete(`${baseUrl}/ssoproviders/${id}/`);
+  return data;
+}
+
+export async function fetchSSOSettings(): Promise<SSOSettingsType> {
+  const { data } = await axios.get(`${baseUrl}/ssoproviders/settings/`);
+  return data;
+}
+
+export async function updateSSOSettings(settings: SSOSettingsType) {
+  const { data } = await axios.post(
+    `${baseUrl}/ssoproviders/settings/`,
+    settings,
+  );
+  return data;
+}
+
+export async function getSSOProviderToken() {
+  const { data } = await axios.post(
+    `${baseUrl}/ssoproviders/token/`,
+    {},
+    {
+      headers: { "X-CSRFToken": getCSRFToken() },
+    },
+  );
+  return data;
+}
+
+export async function disconnectSSOAccount(
+  provider: string,
+  account: string,
+): Promise<SSOAccount> {
+  const { data } = await axios.delete(`${baseUrl}/ssoproviders/account/`, {
+    data: { provider, account },
+  });
+  return data;
+}
+
+// allauth
+const allauthBase = "_allauth/browser/v1";
+
+export interface AllAuthResponse<T> {
+  data: T;
+  status: number;
+  meta?: {
+    is_autheticated: boolean;
+  };
+}
+
+export interface SSOProviderConfig {
+  client_id: string;
+  flows: string[];
+  id: string;
+  name: string;
+}
+
+export interface SSOConfigResponse {
+  socialaccount: {
+    providers: SSOProviderConfig[];
+  };
+}
+
+export async function getSSOConfig(): Promise<
+  AllAuthResponse<SSOConfigResponse>
+> {
+  const { data } = await axios.get(`${allauthBase}/config/`);
+  return data;
+}
+
+export async function openSSOProviderRedirect(id: string) {
+  //save provider to local storage
+  useStorage("provider_id", id);
+  postForm(`${getBaseUrl()}/${allauthBase}/auth/provider/redirect/`, {
+    provider: id,
+    process: "login",
+    callback_url: `${location.origin}/account/provider/callback`,
+    csrfmiddlewaretoken: getCSRFToken() || "",
+  });
+}
--- a/src/ee/sso/components/SSOAccountsTable.vue
+++ b/src/ee/sso/components/SSOAccountsTable.vue
@@ -0,0 +1,142 @@
+<!--
+Copyright (c) 2023-present Amidaware Inc.
+This file is subject to the EE License Agreement.
+For details, see: https://license.tacticalrmm.com/ee
+-->
+
+<template>
+  <q-dialog ref="dialogRef" @hide="onDialogHide">
+    <q-card style="width: 60vw; max-width: 90vw; min-height: 40vh">
+      <q-bar>
+        Connected Social Accounts for {{ user.username }}
+        <q-space />
+        <q-btn v-close-popup dense flat icon="close">
+          <q-tooltip class="bg-white text-primary">Close</q-tooltip>
+        </q-btn>
+      </q-bar>
+      <q-table
+        dense
+        :table-class="{
+          'table-bgcolor': !$q.dark.isActive,
+          'table-bgcolor-dark': $q.dark.isActive,
+        }"
+        :style="{ 'max-height': `${$q.screen.height - 24}px` }"
+        class="tbl-sticky"
+        :rows="user.social_accounts"
+        :columns="columns"
+        :loading="loading"
+        :pagination="{ rowsPerPage: 0, sortBy: 'display', descending: true }"
+        row-key="id"
+        binary-state-sort
+        virtual-scroll
+        :rows-per-page-options="[0]"
+      >
+        <template #body="props">
+          <q-tr>
+            <!-- rows -->
+            <td>{{ props.row.display }}</td>
+            <td>{{ props.row.provider }}</td>
+            <td>{{ formatDate(props.row.last_login) }}</td>
+            <td>{{ formatDate(props.row.date_joined) }}</td>
+            <td>
+              <q-btn
+                size="sm"
+                @click="removeSSOAccount(props.row)"
+                label="Disconnect"
+                color="negative"
+              ></q-btn>
+            </td>
+          </q-tr>
+        </template>
+      </q-table>
+    </q-card>
+  </q-dialog>
+</template>
+
+<script setup lang="ts">
+// composition imports
+import { ref } from "vue";
+import { useDialogPluginComponent, useQuasar, type QTableColumn } from "quasar";
+import { disconnectSSOAccount } from "@/ee/sso/api/sso";
+import { notifySuccess } from "@/utils/notify";
+import { useAuthStore } from "@/stores/auth";
+import { formatDate } from "@/utils/format";
+
+//types
+import type { SSOAccount, SSOUser } from "../types/sso";
+
+const columns: QTableColumn[] = [
+  {
+    name: "display",
+    label: "Display Name",
+    field: "display",
+    align: "left",
+    sortable: true,
+  },
+  {
+    name: "provider",
+    label: "Provider",
+    field: "provider",
+    align: "left",
+    sortable: true,
+  },
+  {
+    name: "last_login",
+    label: "Last Login",
+    field: "last_login",
+    align: "left",
+    sortable: true,
+  },
+  {
+    name: "date_joined",
+    label: "Date Joined",
+    field: "date_joined",
+    align: "left",
+    sortable: true,
+  },
+  {
+    name: "action",
+    label: "",
+    field: "action",
+    align: "left",
+    sortable: true,
+  },
+];
+
+// emits
+defineEmits([...useDialogPluginComponent.emits]);
+
+// props
+const props = defineProps<{
+  user: SSOUser;
+}>();
+
+const { dialogRef, onDialogHide } = useDialogPluginComponent();
+const $q = useQuasar();
+const auth = useAuthStore();
+
+const loading = ref(false);
+
+function removeSSOAccount(account: SSOAccount) {
+  $q.dialog({
+    title: `Disconnect social account: ${account.display}?`,
+    cancel: true,
+    ok: { label: "Delete", color: "negative" },
+  }).onOk(async () => {
+    loading.value = true;
+    try {
+      await disconnectSSOAccount(account.provider, account.uid);
+      notifySuccess("Social account disconnected successfully");
+      if (
+        auth.username === props.user.username &&
+        auth.ssoLoginProvider === account.provider
+      ) {
+        await auth.logout();
+      }
+    } finally {
+      loading.value = false;
+      onDialogHide();
+    }
+  });
+}
+</script>
--- a/src/ee/sso/components/SSOProvidersForm.vue
+++ b/src/ee/sso/components/SSOProvidersForm.vue
@@ -0,0 +1,160 @@
+<!--
+Copyright (c) 2023-present Amidaware Inc.
+This file is subject to the EE License Agreement.
+For details, see: https://license.tacticalrmm.com/ee
+-->
+
+<template>
+  <q-dialog persistent ref="dialogRef" @hide="onDialogHide">
+    <q-card class="q-dialog-plugin" style="width: 35vw; max-width: 35vw">
+      <q-bar>
+        {{ props.provider ? "Edit OIDC Provider" : "Add OIDC Provider" }}
+        <q-space />
+        <q-btn dense flat icon="close" v-close-popup>
+          <q-tooltip class="bg-white text-primary">Close</q-tooltip>
+        </q-btn>
+      </q-bar>
+
+      <!-- name -->
+      <q-card-section>
+        <q-input
+          :readonly="!!props.provider"
+          :disable="!!props.provider"
+          label="Provider Name"
+          outlined
+          dense
+          v-model="localProvider.name"
+          :rules="[
+            (val) => !!val || '*Required',
+            (val) =>
+              /^[a-zA-Z0-9_-]+$/.test(val) ||
+              'Only letters, numbers, hyphens, and underscores are allowed',
+          ]"
+          hint="A unique identifier for the SSO provider. Avoid spaces and special characters, as this will be part of the callback URL."
+        />
+      </q-card-section>
+
+      <!-- url -->
+      <q-card-section>
+        <q-input
+          label="Issuer URL"
+          outlined
+          dense
+          v-model="localProvider.server_url"
+          :rules="[(val) => !!val || '*Required']"
+          hint="The OpenID Connect Issuer URL provided by the SSO provider. This is typically the base URL where the provider hosts their OIDC configuration."
+        />
+      </q-card-section>
+
+      <!-- client id -->
+      <q-card-section>
+        <q-input
+          label="Client ID"
+          outlined
+          dense
+          v-model="localProvider.client_id"
+          :rules="[(val) => !!val || '*Required']"
+        />
+      </q-card-section>
+
+      <!-- secret -->
+      <q-card-section>
+        <q-input
+          v-model="localProvider.secret"
+          filled
+          :type="hideSecret ? 'password' : 'text'"
+          label="Secret"
+          outlined
+          dense
+          :rules="[(val) => !!val || '*Required']"
+        >
+          <template v-slot:append>
+            <q-icon
+              :name="hideSecret ? 'visibility_off' : 'visibility'"
+              class="cursor-pointer"
+              @click="hideSecret = !hideSecret"
+            />
+          </template>
+        </q-input>
+      </q-card-section>
+
+      <q-card-section>
+        <tactical-dropdown
+          label="Default User Role"
+          :options="roleOptions"
+          outlined
+          dense
+          clearable
+          mapOptions
+          filled
+          v-model="localProvider.role"
+          hint="The role assigned to users upon first sign-in through this provider."
+        />
+      </q-card-section>
+
+      <q-card-actions align="right">
+        <q-btn flat label="Cancel" v-close-popup />
+        <q-btn
+          flat
+          label="Submit"
+          color="primary"
+          :loading="loading"
+          @click="submit"
+        />
+      </q-card-actions>
+    </q-card>
+  </q-dialog>
+</template>
+
+<script setup lang="ts">
+// composition imports
+import { ref, reactive } from "vue";
+import { useDialogPluginComponent, extend } from "quasar";
+import { editSSOProvider, addSSOProvider } from "@/ee/sso/api/sso";
+import { notifySuccess } from "@/utils/notify";
+import { useRoleDropdown } from "@/composables/accounts";
+
+// components
+import TacticalDropdown from "@/components/ui/TacticalDropdown.vue";
+
+// types
+import type { SSOProvider } from "@/ee/sso/types/sso";
+
+// define emits
+defineEmits([...useDialogPluginComponent.emits]);
+
+// define props
+const props = defineProps<{ provider?: SSOProvider }>();
+
+const { dialogRef, onDialogHide, onDialogOK } = useDialogPluginComponent();
+
+const loading = ref(false);
+
+const { roleOptions } = useRoleDropdown({ onMount: true });
+
+const hideSecret = ref(true);
+const localProvider: SSOProvider = props.provider
+  ? reactive(extend({}, props.provider))
+  : reactive({
+      id: 0,
+      name: "",
+      client_id: "",
+      secret: "",
+      server_url: "",
+      role: null,
+    } as SSOProvider);
+
+async function submit() {
+  loading.value = true;
+
+  try {
+    props.provider
+      ? await editSSOProvider(localProvider.id, localProvider)
+      : await addSSOProvider(localProvider);
+    onDialogOK();
+    notifySuccess("SSO Provider was edited!");
+  } catch (e) {}
+
+  loading.value = false;
+}
+</script>
--- a/src/ee/sso/components/SSOProvidersTable.vue
+++ b/src/ee/sso/components/SSOProvidersTable.vue
@@ -0,0 +1,293 @@
+<!--
+Copyright (c) 2023-present Amidaware Inc.
+This file is subject to the EE License Agreement.
+For details, see: https://license.tacticalrmm.com/ee
+-->
+
+<template>
+  <div>
+    <div class="row">
+      <div class="text-subtitle2">SSO Providers</div>
+      <q-space />
+      <q-btn
+        size="sm"
+        color="grey-5"
+        icon="fas fa-plus"
+        text-color="black"
+        label="Add OIDC Provider"
+        @click="addSSOProvider"
+        :disable="!ssoSettings.sso_enabled"
+      >
+        <q-tooltip v-if="!ssoSettings.sso_enabled" class="text-caption"
+          >Enable SSO in the settings to allow adding a provider.</q-tooltip
+        >
+      </q-btn>
+    </div>
+    <q-separator />
+    <q-table
+      dense
+      :rows="providers"
+      :columns="columns"
+      :visible-columns="visibleColumns"
+      :pagination="{ rowsPerPage: 0, sortBy: 'name', descending: true }"
+      row-key="id"
+      binary-state-sort
+      hide-pagination
+      virtual-scroll
+      :rows-per-page-options="[0]"
+      no-data-label="No OIDC Providers added yet"
+      :loading="loading"
+    >
+      <template v-slot:top>
+        <q-btn
+          @click="openSSOSettings"
+          label="SSO Settings"
+          no-caps
+          color="primary"
+          size="md"
+        />
+      </template>
+      <!-- body slots -->
+      <template v-slot:body="props">
+        <q-tr
+          :props="props"
+          class="cursor-pointer"
+          @dblclick="editSSOProvider(props.row)"
+        >
+          <!-- context menu -->
+          <q-menu context-menu>
+            <q-list dense style="min-width: 200px">
+              <q-item
+                clickable
+                v-close-popup
+                @click="editSSOProvider(props.row)"
+              >
+                <q-item-section side>
+                  <q-icon name="edit" />
+                </q-item-section>
+                <q-item-section>Edit</q-item-section>
+              </q-item>
+              <q-item
+                clickable
+                v-close-popup
+                @click="deleteSSOProvider(props.row)"
+              >
+                <q-item-section side>
+                  <q-icon name="delete" />
+                </q-item-section>
+                <q-item-section>Delete</q-item-section>
+              </q-item>
+
+              <q-separator></q-separator>
+
+              <!-- callback url -->
+              <q-item
+                clickable
+                v-close-popup
+                @click="getCallbackURL(props.row.callback_url)"
+              >
+                <q-item-section side>
+                  <q-icon name="description" />
+                </q-item-section>
+                <q-item-section>Copy Callback URL</q-item-section>
+              </q-item>
+
+              <!-- javascript origin url (used by google oauth) -->
+              <q-item
+                clickable
+                v-close-popup
+                @click="getCallbackURL(props.row.javascript_origin_url)"
+              >
+                <q-item-section side>
+                  <q-icon name="description" />
+                </q-item-section>
+                <q-item-section
+                  >Copy Authorized JavaScript origin</q-item-section
+                >
+              </q-item>
+
+              <q-separator></q-separator>
+
+              <q-item clickable v-close-popup>
+                <q-item-section>Close</q-item-section>
+              </q-item>
+            </q-list>
+          </q-menu>
+          <!-- name -->
+          <q-td>
+            {{ truncateText(props.row.name, 25) }}
+            <q-tooltip>{{ props.row.name }}</q-tooltip>
+          </q-td>
+          <!-- server_url -->
+          <q-td>
+            {{ truncateText(props.row.server_url, 20) }}
+            <q-tooltip>{{ props.row.server_url }}</q-tooltip>
+          </q-td>
+          <!-- pattern -->
+          <q-td>
+            {{ truncateText(props.row.client_id, 20) }}
+            <q-tooltip>{{ props.row.client_id }}</q-tooltip>
+          </q-td>
+          <q-td>
+            <q-icon
+              size="sm"
+              name="content_copy"
+              @click="getCallbackURL(props.row.callback_url)"
+            >
+              <q-tooltip>Copy Callback URL to Clipboard</q-tooltip>
+            </q-icon>
+          </q-td>
+        </q-tr>
+      </template>
+    </q-table>
+  </div>
+</template>
+
+<script setup lang="ts">
+// composition imports
+import { computed, ref, onMounted } from "vue";
+import { useStore } from "vuex";
+import { QTableColumn, useQuasar, copyToClipboard } from "quasar";
+import {
+  fetchSSOProviders,
+  removeSSOProvider,
+  fetchSSOSettings,
+} from "@/ee/sso/api/sso";
+import { notifySuccess } from "@/utils/notify";
+import { truncateText } from "@/utils/format";
+
+// ui imports
+import SSOProvidersForm from "@/ee/sso/components/SSOProvidersForm.vue";
+
+// types
+import { type SSOProvider, SSOSettingsType } from "@/ee/sso/types/sso";
+import SSOSettings from "@/ee/sso/components/SSOSettings.vue";
+
+// setup quasar
+const $q = useQuasar();
+
+// setup vuew store
+const store = useStore();
+
+const loading = ref(false);
+const providers = ref([] as SSOProvider[]);
+const ssoSettings = ref({} as SSOSettingsType);
+
+const columns: QTableColumn[] = [
+  {
+    name: "name",
+    label: "Name",
+    field: "name",
+    align: "left",
+    sortable: true,
+  },
+  {
+    name: "server_url",
+    label: "Server Url",
+    field: "server_url",
+    align: "left",
+    sortable: true,
+  },
+  {
+    name: "client_id",
+    label: "Client ID",
+    field: "client_id",
+    align: "left",
+    sortable: true,
+  },
+  {
+    name: "callback_url",
+    label: "Callback URL",
+    field: "callback_url",
+    align: "left",
+    sortable: false,
+  },
+  {
+    name: "javascript_origin_url",
+    label: "Javascript Origin URL",
+    field: "javascript_origin_url",
+    align: "left",
+    sortable: false,
+  },
+];
+
+const visibleColumns = computed(() => {
+  return columns
+    .map((column) => column.name)
+    .filter((name) => name !== "javascript_origin_url");
+});
+
+async function getSSOSettings() {
+  try {
+    ssoSettings.value = await fetchSSOSettings();
+  } catch (e) {
+    console.error(e);
+  }
+}
+
+async function getSSOProviders() {
+  loading.value = true;
+  try {
+    providers.value = await fetchSSOProviders();
+  } catch (e) {
+    console.error(e);
+  }
+  loading.value = false;
+}
+
+function addSSOProvider() {
+  $q.dialog({
+    component: SSOProvidersForm,
+  }).onOk(getSSOProviders);
+}
+
+function editSSOProvider(provider: SSOProvider) {
+  $q.dialog({
+    component: SSOProvidersForm,
+    componentProps: {
+      provider: provider,
+    },
+  }).onOk(getSSOProviders);
+}
+
+function deleteSSOProvider(provider: SSOProvider) {
+  $q.dialog({
+    title: `Delete SSO Provider: ${provider.name}?`,
+    cancel: true,
+    ok: { label: "Delete", color: "negative" },
+  }).onOk(async () => {
+    loading.value = true;
+    try {
+      await removeSSOProvider(provider.id);
+      await getSSOProviders();
+      notifySuccess(`SSO Provider: ${provider.name} was deleted!`);
+    } catch (e) {
+      console.error(e);
+    }
+    loading.value = false;
+  });
+}
+
+function getCallbackURL(url: string) {
+  copyToClipboard(url).then(() => {
+    notifySuccess("URL copied!");
+  });
+}
+
+function openSSOSettings() {
+  $q.dialog({
+    component: SSOSettings,
+  }).onOk((updatedSSOSettings: SSOSettingsType) => {
+    store.commit(
+      "setBlockLocalUserLogon",
+      updatedSSOSettings.block_local_user_logon,
+    );
+    ssoSettings.value = { ...updatedSSOSettings };
+  });
+}
+
+onMounted(async () => {
+  await getSSOSettings();
+  await getSSOProviders();
+});
+</script>
--- a/src/ee/sso/components/SSOSettings.vue
+++ b/src/ee/sso/components/SSOSettings.vue
@@ -0,0 +1,112 @@
+<!--
+Copyright (c) 2023-present Amidaware Inc.
+This file is subject to the EE License Agreement.
+For details, see: https://license.tacticalrmm.com/ee
+-->
+
+<template>
+  <q-dialog ref="dialogRef" @hide="onDialogHide">
+    <q-card class="q-dialog-plugin" style="width: 50">
+      <q-bar>
+        SSO Settings
+        <q-space />
+        <q-btn dense flat icon="close" v-close-popup>
+          <q-tooltip class="bg-white text-primary">Close</q-tooltip>
+        </q-btn>
+      </q-bar>
+
+      <!-- disable sso-->
+      <q-card-section>
+        <q-checkbox
+          dense
+          label="Enable SSO"
+          v-model="ssoSettings.sso_enabled"
+        />
+      </q-card-section>
+
+      <!-- block local user logon -->
+      <q-card-section>
+        <q-checkbox
+          dense
+          label="Block Local User Login"
+          v-model="ssoSettings.block_local_user_logon"
+          :disable="!ssoSettings.sso_enabled"
+          hint="When enabled, only users with SSO accounts can log in, with the exception of local superuser accounts."
+        >
+          <q-tooltip class="text-caption"
+            >When enabled, only users with SSO accounts can log in, with the
+            exception of local superuser accounts.</q-tooltip
+          >
+        </q-checkbox>
+      </q-card-section>
+
+      <q-card-actions align="right">
+        <q-btn flat label="Cancel" v-close-popup />
+        <q-btn
+          flat
+          label="Submit"
+          color="primary"
+          :loading="loading"
+          @click="submit"
+        />
+      </q-card-actions>
+    </q-card>
+  </q-dialog>
+</template>
+
+<script setup lang="ts">
+// composition imports
+import { ref, watch, onMounted } from "vue";
+import { useDialogPluginComponent } from "quasar";
+import { notifySuccess, notifyWarning } from "@/utils/notify";
+import { fetchSSOSettings, updateSSOSettings } from "@/ee/sso/api/sso";
+
+// types
+import { SSOSettingsType } from "../types/sso";
+
+// define emits
+defineEmits([...useDialogPluginComponent.emits]);
+
+const { dialogRef, onDialogHide, onDialogOK } = useDialogPluginComponent();
+
+const ssoSettings = ref({} as SSOSettingsType);
+const loading = ref(false);
+
+async function getSSOSettings() {
+  loading.value = true;
+  try {
+    ssoSettings.value = await fetchSSOSettings();
+  } catch (e) {
+    console.error(e);
+  }
+  loading.value = false;
+}
+
+async function submit() {
+  loading.value = true;
+  try {
+    await updateSSOSettings(ssoSettings.value);
+    notifySuccess("Settings updated successfully");
+    onDialogOK(ssoSettings.value);
+  } catch (e) {
+    if (e.status === 423) {
+      notifyWarning(e.response.data, 7000);
+    }
+    console.error(e);
+  }
+  loading.value = false;
+}
+
+onMounted(async () => {
+  await getSSOSettings();
+  // watcher to disable block local login if sso is disabled
+  watch(
+    () => ssoSettings.value.sso_enabled,
+    (newValue) => {
+      if (!newValue) {
+        ssoSettings.value.block_local_user_logon = false;
+      }
+    },
+  );
+});
+</script>
--- a/src/ee/sso/types/sso.ts
+++ b/src/ee/sso/types/sso.ts
@@ -0,0 +1,33 @@
+/*
+Copyright (c) 2023-present Amidaware Inc.
+This file is subject to the EE License Agreement.
+For details, see: https://license.tacticalrmm.com/ee
+*/
+
+import { User } from "@/types/accounts";
+export interface SSOProvider {
+  id: number;
+  name: string;
+  provider_id: string;
+  client_id: string;
+  secret: string;
+  server_url: string;
+  role: number | null;
+}
+
+export interface SSOAccount {
+  uid: string;
+  display: string;
+  provider: string;
+  last_login: string;
+  date_joined: string;
+}
+
+export interface SSOUser extends User {
+  social_accounts: SSOAccount[];
+}
+
+export interface SSOSettingsType {
+  sso_enabled: boolean;
+  block_local_user_logon: boolean;
+}
--- a/src/ee/sso/utils/cookies.ts
+++ b/src/ee/sso/utils/cookies.ts
@@ -0,0 +1,21 @@
+/*
+Copyright (c) 2023-present Amidaware Inc.
+This file is subject to the EE License Agreement.
+For details, see: https://license.tacticalrmm.com/ee
+*/
+
+export function getCookie(name: string) {
+  let cookieValue = null;
+  if (document.cookie && document.cookie !== "") {
+    const cookies = document.cookie.split(";");
+    for (let i = 0; i < cookies.length; i++) {
+      const cookie = cookies[i].trim();
+      // Does this cookie string begin with the name we want?
+      if (cookie.substring(0, name.length + 1) === name + "=") {
+        cookieValue = decodeURIComponent(cookie.substring(name.length + 1));
+        break;
+      }
+    }
+  }
+  return cookieValue;
+}
--- a/src/ee/sso/views/ProviderCallback.vue
+++ b/src/ee/sso/views/ProviderCallback.vue
@@ -0,0 +1,32 @@
+<!--
+Copyright (c) 2023-present Amidaware Inc.
+This file is subject to the EE License Agreement.
+For details, see: https://license.tacticalrmm.com/ee
+-->
+
+<template>
+  <div class="fixed-center text-center" v-if="error">
+    <p class="text-faded">There was an error logging into your provider.</p>
+    <q-btn color="secondary" style="width: 200px" to="/login"
+      >Go back to Login</q-btn
+    >
+  </div>
+</template>
+
+<script lang="ts" setup>
+import { useRoute, useRouter } from "vue-router";
+import { useAuthStore } from "@/stores/auth";
+
+const route = useRoute();
+const error = route.query.error;
+
+const router = useRouter();
+const auth = useAuthStore();
+if (!error) {
+  if (auth.loggedIn) {
+    router.push({ name: "Dashboard" });
+  } else {
+    router.push({ name: "Login" });
+  }
+}
+</script>
--- a/src/layouts/MainLayout.vue
+++ b/src/layouts/MainLayout.vue
@@ -157,7 +157,7 @@

        <AlertsIcon />

-        <q-btn-dropdown flat no-caps stretch :label="username || ''">
+        <q-btn-dropdown flat no-caps stretch :label="displayName || ''">
          <q-list>
            <q-item
              clickable
@@ -211,7 +211,7 @@
 </template>
 <script setup lang="ts">
 // composition imports
-import { computed, onMounted } from "vue";
+import { computed, onMounted, onBeforeUnmount, ref } from "vue";
 import { useQuasar } from "quasar";
 import { useStore } from "vuex";
 import { useDashboardStore } from "@/stores/dashboard";
@@ -240,7 +240,7 @@ const {
  daysUntilCertExpires,
 } = storeToRefs(useDashboardStore());

-const { username } = storeToRefs(useAuthStore());
+const { displayName } = storeToRefs(useAuthStore());

 const darkMode = computed({
  get: () => {
@@ -315,8 +315,25 @@ const updateAvailable = computed(() => {
  return currentTRMMVersion.value !== latestTRMMVersion.value;
 });

+const poll = ref(null);
+
+function livePoll() {
+  poll.value = setInterval(
+    () => {
+      store.dispatch("checkVer");
+      store.dispatch("getDashInfo", false);
+    },
+    60 * 4 * 1000,
+  );
+}
+
 onMounted(() => {
  store.dispatch("getDashInfo");
  store.dispatch("checkVer");
+  livePoll();
+});
+
+onBeforeUnmount(() => {
+  clearInterval(poll.value);
 });
 </script>
--- a/src/store/index.js
+++ b/src/store/index.js
@@ -43,6 +43,8 @@ export default function () {
        },
        server_scripts_enabled: true,
        web_terminal_enabled: true,
+        sso_enabled: false,
+        block_local_user_logon: false,
      };
    },
    getters: {
@@ -159,6 +161,12 @@ export default function () {
      setWebTerminalEnabled(state, obj) {
        state.web_terminal_enabled = obj;
      },
+      setSSOEnabled(state, obj) {
+        state.sso_enabled = obj;
+      },
+      setBlockLocalUserLogon(state, obj) {
+        state.block_local_user_logon = obj;
+      },
    },
    actions: {
      setClientTreeSplitter(context, val) {
@@ -245,6 +253,7 @@ export default function () {
        commit("setRunCmdPlaceholders", data.run_cmd_placeholder_text);
        commit("setServerScriptsEnabled", data.server_scripts_enabled);
        commit("setWebTerminalEnabled", data.web_terminal_enabled);
+        commit("setBlockLocalUserLogon", data.block_local_user_logon);

        if (data?.date_format !== "") commit("setDateFormat", data.date_format);
        else commit("setDateFormat", data.default_date_format);
--- a/src/stores/auth.ts
+++ b/src/stores/auth.ts
@@ -1,5 +1,6 @@
 import { defineStore } from "pinia";
 import { useStorage } from "@vueuse/core";
+
 import axios from "axios";

 interface CheckCredentialsRequest {
@@ -27,12 +28,18 @@ interface TOTPSetupResponse {
 export const useAuthStore = defineStore("auth", {
  state: () => ({
    username: useStorage("user_name", null),
+    name: useStorage("name", null),
    token: useStorage("access_token", null),
+    ssoLoginProvider: useStorage("sso_provider", null),
+    provider_id: useStorage("provider_id", null),
  }),
  getters: {
    loggedIn: (state) => {
      return state.token !== null;
    },
+    displayName: (state) => {
+      return state.name ? state.name : state.username;
+    },
  },
  actions: {
    async checkCredentials(
@@ -43,13 +50,16 @@ export const useAuthStore = defineStore("auth", {
      if (!data.totp) {
        this.token = data.token;
        this.username = data.username;
+        this.name = data.name;
      }
      return data;
    },
    async login(credentials: LoginRequest) {
      const { data } = await axios.post("/v2/login/", credentials);
      this.username = data.username;
+      this.name = data.name;
      this.token = data.token;
+      this.ssoLoginProvider = null;

      return data;
    },
@@ -61,6 +71,9 @@ export const useAuthStore = defineStore("auth", {
      }
      this.token = null;
      this.username = null;
+      this.name = null;
+      this.ssoLoginProvider = null;
+      this.provider_id = null;
    },
    async setupTotp(): Promise<TOTPSetupResponse | false> {
      const { data } = await axios.post("/accounts/users/setup_totp/");
--- a/src/types/accounts.ts
+++ b/src/types/accounts.ts
@@ -1,4 +1,13 @@
 export interface User {
  id: number;
  username: string;
+  name: string;
+  email: string;
+}
+
+export interface AuthToken {
+  digest: string;
+  created: string;
+  expiry: string;
+  user: string;
 }
--- a/src/types/core/settings.ts
+++ b/src/types/core/settings.ts
@@ -0,0 +1,3 @@
+export interface CoreSetting {
+  block_local_user_logon: boolean;
+}
--- a/src/views/LoginView.vue
+++ b/src/views/LoginView.vue
@@ -49,7 +49,34 @@
              </div>
            </q-form>
          </q-card-section>
+
+          <q-card-section v-if="ssoProviders?.length > 0">
+            <div class="text-h6 text-center q-mb-md">Log in with SSO</div>
+            <q-separator />
+
+            <q-list dense bordered class="q-pa-sm">
+              <q-item
+                v-for="provider in ssoProviders"
+                :key="provider.id"
+                @click="openSSOProviderRedirect(provider.id)"
+                clickable
+                class="q-pa-xs hover-bg"
+              >
+                <q-item-section avatar>
+                  <q-icon
+                    :name="provider.icon ?? 'mdi-key'"
+                    size="sm"
+                    class="text-primary"
+                  />
+                </q-item-section>
+                <q-item-section>
+                  <q-item-label>{{ provider.name }}</q-item-label>
+                </q-item-section>
+              </q-item>
+            </q-list>
+          </q-card-section>
        </q-card>
+
        <!-- 2 factor modal -->
        <q-dialog persistent v-model="prompt">
          <q-card style="min-width: 400px">
@@ -84,10 +111,15 @@
 </template>

 <script setup lang="ts">
-import { ref, reactive } from "vue";
+import { ref, reactive, onMounted } from "vue";
 import { type QForm, useQuasar } from "quasar";
 import { useAuthStore } from "@/stores/auth";
 import { useRouter } from "vue-router";
+import {
+  openSSOProviderRedirect,
+  getSSOConfig,
+  type SSOProviderConfig,
+} from "@/ee/sso/api/sso";

 // setup quasar
 const $q = useQuasar();
@@ -107,6 +139,7 @@ const credentials = reactive({ username: "", password: "" });
 const twofactor = ref("");
 const prompt = ref(false);
 const showPassword = ref(true);
+const ssoProviders = ref([] as SSOProviderConfig[]);

 async function checkCreds() {
  try {
@@ -135,6 +168,15 @@ async function onSubmit() {
    prompt.value = false;
  }
 }
+
+onMounted(async () => {
+  try {
+    const result = await getSSOConfig();
+    ssoProviders.value = result.data.socialaccount.providers;
+  } catch (e) {
+    console.error(e);
+  }
+});
 </script>

 <style>
Author	SHA1	Message	Date
wh1te909	bd213532a6	Revert "fix clipboard perms amidaware/tacticalrmm#1134" This reverts commit `98a85a8b2e`.	2025-02-01 20:10:38 +00:00
wh1te909	98a85a8b2e	fix clipboard perms amidaware/tacticalrmm#1134	2025-02-01 10:34:07 +00:00
wh1te909	845ed2b44a	posix tasks support	2025-01-24 23:53:52 +00:00
wh1te909	f7b52e506d	bump version	2024-11-20 19:39:45 +00:00
wh1te909	4932997498	Merge pull request #28 from sadnub/sso feat: single sign-on https://github.com/amidaware/tacticalrmm/issues/508	2024-11-20 11:33:39 -08:00
wh1te909	09ecc36bcd	wording	2024-11-19 23:15:17 +00:00
wh1te909	4d8abbaa12	make the modal persistent	2024-11-19 23:14:45 +00:00
wh1te909	9f143a7e05	restore missing livepoll function that got missed during rework	2024-11-15 23:55:05 +00:00
wh1te909	e51efaa9e2	typo	2024-11-15 20:52:15 +00:00
wh1te909	64edab9df4	fix lint	2024-11-08 21:25:02 +00:00
wh1te909	85f408ae94	increase chunksize limit	2024-11-08 21:01:08 +00:00
wh1te909	26ed91cad9	update reqs	2024-11-07 22:08:10 +00:00
wh1te909	bb828b5996	add client/site columns to alerts table	2024-11-07 21:06:36 +00:00
wh1te909	2583e9ac9e	make user admin modal wider	2024-11-06 20:45:42 +00:00
wh1te909	acaced7122	clear the provider id on logout	2024-11-05 20:26:22 +00:00
wh1te909	795ba12f3a	handle 423	2024-11-04 23:50:02 +00:00
wh1te909	face099460	urls now sent by backend and add javascript origin url	2024-11-04 22:35:07 +00:00
wh1te909	2690e9daef	add descriptive wording	2024-11-04 20:33:19 +00:00
wh1te909	ec5ef65911	don't allow SSO reset from UI	2024-11-01 18:29:49 +00:00
wh1te909	237b097684	return error from backend instead if local login disabled rather than not displaying at all in UI	2024-11-01 18:29:19 +00:00
wh1te909	6f6d98fae2	set provider icon from api	2024-11-01 17:52:59 +00:00
wh1te909	583f57f2af	add sso	2024-11-01 17:49:09 +00:00
wh1te909	4270fd0d19	fix logic	2024-10-31 21:14:44 +00:00
wh1te909	02eeea50e3	rename type to avoid naming conflict with component	2024-10-31 20:46:33 +00:00
sadnub	54207d1c0f	disable certain UI elements if block_local_user_local is enabled	2024-10-29 11:19:07 -04:00
wh1te909	16b9bf1529	fix run on server missing for posix	2024-10-29 11:19:07 -04:00
wh1te909	1adeadd48e	fix run on server missing for posix	2024-10-28 21:26:14 +00:00
wh1te909	fada3c2ed7	also add column for copying callback url	2024-10-25 19:26:20 +00:00
wh1te909	c1cd6114de	add disable and hint to sso form	2024-10-25 19:25:36 +00:00
wh1te909	79d02060ef	style sso login	2024-10-25 19:24:17 +00:00
wh1te909	3ce67b0701	remove debug	2024-10-25 19:21:43 +00:00
sadnub	8aab840633	change secret field to password and allow toggling visibility	2024-10-24 04:34:19 +00:00
sadnub	0ce8da44c1	add sso user column in user table and fix disconnecting sso accounts	2024-10-24 04:34:19 +00:00
sadnub	856a3b8b96	allow dispay full name in UI if present	2024-10-24 04:34:19 +00:00
sadnub	0e59f580c3	auto redirect to sso login on sso signup	2024-10-24 04:34:19 +00:00
sadnub	d0cf72bbd2	fix 403 on sso provider signup and other tweaks to UI. Setting to disable SSO	2024-10-24 04:34:19 +00:00
sadnub	65096e6b88	implement role assignment on sso user signups and log ip for sso logins	2024-10-24 04:34:19 +00:00
sadnub	c31ed666b5	added user session tracking, social accoutn tracking, and implemented local user logon blocking	2024-10-24 04:34:19 +00:00
sadnub	09e39ef6da	rollback axios not redirecting on 401 errors for certain urls	2024-10-24 04:34:19 +00:00
sadnub	75a9ef88d1	implement session auth login logic and cleanup views	2024-10-24 04:34:19 +00:00
sadnub	0eb81662d3	move sso auth to auth store	2024-10-24 04:34:19 +00:00
sadnub	541134a88f	sso init	2024-10-24 04:34:19 +00:00