User story #24182open
Add a role mapping and filtering for OIDC provided roles
We would like to be able to restriect the list of role an IdP can address, and allow a mapping between the names used by the IdP and Rudder internal names.
The config and could look like:
rudder.auth.oauth2.provider.okta.roles.mapping.enforced=true rudder.auth.oauth2.provider.okta.roles.mapping.entitlements.rudder_admin=administrator rudder.auth.oauth2.provider.okta.roles.mapping.entitlements.rudder_readonly=readonly
(if enforced is true, we only are allowed to use the roles from entitlements, else entitlements are additionnal aliases)
Updated by François ARMAND 22 days ago
- Status changed from In progress to Pending technical review
- Assignee changed from François ARMAND to Clark ANDRIANASOLO
- Pull Request set to https://github.com/Normation/rudder-plugins/pull/651
Updated by Anonymous 18 days ago
- Status changed from Pending technical review to Pending release
Applied in changeset rudder:rudder-plugins|d1417c283c8cc9da693536665b2da8368268a042.
Updated by François ARMAND 18 days ago
Applied in changeset rudder:rudder-plugins|a86328520f648a23ab5a121f691e76d9707c4749.