Apologies if this was posted twice, didn't confirm email properly. I'm trying to set up a highly dynamic Guacamole setup, using OpenID for authentication (against IDAptive; this part works well). The actual Guacamole connections need to be sourced from Consul service discovery; my plan had been to use Consul Template to do this and spit out a file like the user-mapping.xml, but it looks like there's no way to use the two of these in concert.
The NoAuth extension that appears to have been deprecated looks like it might have handled this for me. QuickConnect works fine but most of the point of Guacamole was to provide my technical end-users a nice list of running VNC sessions inside our environment in a secure fashion with 2FA and so forth. Is there any option for using OpenID without having a database backend to list connection information? If I have to maintain a database, that means a lot more work to get this working (i.e. i'd have to write something that could blow away the Guacamole database and repopulate it from whatever we source from Consul). A static configuration maintained using tools outside of the app itself lends itself far more to my process. Should I just downgrade to the pre-1.0 release and use noauth? This seems to give me no upgrade path, and I'm not sure if the openid extension actually works alongside that anyhow. Or, should I start working on an SQL syncing mechanism?
