[auth_oauth] Automatically redirect to SSO for authentication

[madduck]

Is your feature request related to a problem?

When OIDC is configured, the user is still presented with a username/password login prompt, and expected to click the button for SSO below:

This is potentially confusing, as users might try to enter user credentials there, which will be refused.

Also, in the standard case, this always requires the same click of a button, which is extra work.

Describe the solution you'd like

When SSO is configured, and a new setting e.g. "Bypass password login" is set to true, the login screen should forward to the SSO provider directly, instead of requiring a button press.

For the case when a local user (e.g. Administrator) needs to log in (SSO provider down, misconfigured, or some other reason), then appending something like ?allauth=1 to the URL would force the current screen despite the aforementioned "Bypass" setting.

Additional context

WikiJS does this nicely:

[sbidoul]

Could be useful, but just noting this feature is not related to the auth_oidc module but rather to the auth_oauth Odoo CE modules.

[madduck]

@sbidoul okay, I will have to take your word for this.

Meanwhile, I have noticed that auth_saml does seem to provide this feature:

From the README:

If all the users have a SAML id in a single provider, you can set automatic redirection in the provider settings. The autoredirection will only be done on the active provider with the highest priority. It is still possible to access the login without redirection by using the query parameter disable_autoredirect, as in https://example.com/web/login?disable_autoredirect= The login is also displayed if there is an error with SAML login, in order to display any error message.

[vincent-hatakeyama]

#717 implements the feature in 16.0

[vincent-hatakeyama]

#627 Implements the feature better