Docs
Go to coder.comRequest SupportRoadmap
Home
About
Comparison
Feedback
Environments
Getting started
Lifecycle
Editors and IDEs
Autostart
Dev URLs
Docker in environments
Environment parameters
Environment variables
Personalization
User preferences
Progressive web apps
SSH access
Workspaces as code
Workspace templates
Images
Import
Structure
Tags
Configure
SSL certificates
Deprecate
Embeddable button
Command line
Installation and setup
Remote terminal
File sync
Environment management
Setup
Architecture
Requirements
Kubernetes
Local preview
Amazon Elastic Kubernetes Service
Azure Kubernetes Service
Google Kubernetes Engine
Installation
Configuration
Licensing
Air-gapped deployment
Updating
Admin
Access control
User roles
Organizations
Password reset
User management
Environment management
Docker in environments
Extensions
GPU acceleration
JetBrains IDE installation
Memory overprovisioning
Shutdown
SSH configuration
Registries
Default registry
Workspace providers
Workspace provider deployment
Account dormancy
Appearance
Audit
Dev URLs
Git integration
Usage metrics
Telemetry
Templates
Guides
Changelog
1.17.2
1.17.1
1.17.0
1.16.3
1.16.2
1.16.1
1.16.0
1.15.2
1.15.1
1.15.0
1.14.4
1.14.3
1.14.2
1.14.1
1.14.0
1.13.2
Home
/
Admin

Access control

2 min read

Learn how to change how Coder users sign in.

The Authentication tab allows you to choose how your users login and gain access to Coder. Currently, you can choose between Built-In Authentication and OpenID Connect.

Built-In Authentication

Built-in authentication allows you (or any admin) to manually create users, who then log in with their email address and temporary password. They will be asked to change their password after they log in the first time.

OpenID Connect

The OpenID Connect (OIDC) option allows you to defer identity management to the OIDC provider of your choice.

Set Up Authentication via OIDC

Before proceeding, you'll need to register a Coder application with your OIDC Provider. You'll need to provide a domain name for the OIDC token callback; use https://coder.my-company.com/oidc/callback.

Once you've done this, you'll need to complete the setup process in Coder. On the Authentication tab, provide the following parameters:

  • Client ID: The client ID for the Coder application you registered with the OIDC provider
  • Client Secret: The secret assigned to the Coder application you registered with the OIDC provider
  • Issuer (e.g., https://my-idp.com/realm/my-org): The URL where Coder can find your OIDC provider's configuration document

If you do not have values for any of these parameters, you can obtain them from your OIDC provider.

Change the Authentication Method

You can change the authentication method by which a user logs into their Coder account.

To do so, go to Manage > Users. Find the user whose authentication type you want to change, and use the Auth Type to toggle between Built-In and OpenID Connect.

Our docs are open source. See something wrong or unclear? Make an edit.

Go to coder.comGitHub