Github login - is it possible restrict to a specific organization?

I wanted to use GitHub for authentification of selfhosted services. Per default it seems that ALL GitHub users are able to login, although the OAuth App is connected to the organization.

Other solutions provide a option to filter by organization or team.

Is there a similar possibility in keycloak?

Thanks in advance.

Hi :slight_smile: I don’t know of any ways to configure the Github Authenticator in a way to restrict this. The first solution that comes to the top of mind (which I haven’t tried, but I am using a similar solution on a production system to integrate with Shibboleth) is to add a Authentication Step to your Authentication Flow which checks that the user is in a given organization.