Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

EVEREST-1799 Configure OIDC scope #1063

Open
wants to merge 9 commits into
base: main
Choose a base branch
from
Open

EVEREST-1799 Configure OIDC scope #1063

wants to merge 9 commits into from

Conversation

recharte
Copy link
Collaborator

@recharte recharte commented Jan 28, 2025
edited
Loading

EVEREST-1799 Powered by Pull Request Badge

In #980 we added the ability to fetch user groups from the external IdP. However, we can't always request the groups scope during the OIDC flow. This is because the IdP might not support it, or the user might not have configured it.
In order to keep backwards compatibility, we need to add a new field to the settings API that returns the user configured OIDC scope. Like the other OIDC settings this can only be configured through the CLI. By default, the scope should be openid profile email.

Related PRs:

@recharte recharte requested review from a team as code owners January 28, 2025 10:25
@recharte recharte mentioned this pull request Jan 28, 2025
Open
maxkondr
maxkondr requested changes Jan 28, 2025
View reviewed changes
commands/settings/oidc/configure.go Outdated Show resolved Hide resolved
commands/settings/oidc/configure.go Outdated Show resolved Hide resolved
pkg/cli/flags.go Outdated Show resolved Hide resolved
pkg/oidc/configure.go Outdated Show resolved Hide resolved
pkg/oidc/configure.go Outdated Show resolved Hide resolved
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@PeterSzcz PeterSzcz PeterSzcz left review comments

@oksana-grishchenko oksana-grishchenko oksana-grishchenko approved these changes

@maxkondr maxkondr maxkondr approved these changes

@fabio-silva fabio-silva fabio-silva approved these changes

Assignees
No one assigned
Labels
auto-update-base feature-build
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@recharte @fabio-silva @maxkondr @oksana-grishchenko @PeterSzcz @percona-robot