warpgate

warp-tech/warpgate

Fork 0

mirror of https://github.com/warp-tech/warpgate.git synced 2024-11-10 09:12:56 +08:00

Commit graph

Author	SHA1	Message	Date
Eugene	ef3c20719f	word	2024-03-23 21:54:21 +01:00
Skyler Mansfield	916d51a4e8	Add support for role mappings on custom SSO providers. (#920 ) This is done using the `role_mappings` property. Roles to be mapped are gotten from the 'warp_groups` oidc claim: ```sso_providers: - name: custom_sso label: Custom SSO provider: type: custom client_id: <client_id> client_secret: <client_secret> issuer_url: <issuer_url> scopes: ["email", "profile", "openid", "warp_groups"] #warp_groups is scope name to request for my demo case, which adds a "warpgate_groups" claim to the userinfo role_mappings: - ["warpgate:admin", "warpgate:admin"] ``` This maps the `warpgate:admin` group from OIDC to the `warpgate:admin` role. This [video on YouTube](https://youtu.be/XCYSGGCgk9Q) demonstrates the functionality --------- Co-authored-by: Eugene <inbox@null.page>	2024-03-23 12:05:12 +01:00

Author

SHA1

Message

Date

Eugene

ef3c20719f

word

2024-03-23 21:54:21 +01:00

Skyler Mansfield

916d51a4e8

Add support for role mappings on custom SSO providers. (#920 )

This is done using the `role_mappings` property.
Roles to be mapped are gotten from the 'warp_groups` oidc claim:
```sso_providers: 
  - name: custom_sso
    label: Custom SSO
    provider:
      type: custom
      client_id: <client_id>
      client_secret: <client_secret>
      issuer_url: <issuer_url>
      scopes: ["email", "profile", "openid", "warp_groups"] #warp_groups is scope name to request for my demo case, which adds a "warpgate_groups" claim to the userinfo
      role_mappings: 
        - ["warpgate:admin", "warpgate:admin"]
```
This maps the `warpgate:admin` group from OIDC to the `warpgate:admin`
role.

This [video on YouTube](https://youtu.be/XCYSGGCgk9Q) demonstrates the
functionality

---------

Co-authored-by: Eugene <inbox@null.page>

2024-03-23 12:05:12 +01:00

2 commits