-
Notifications
You must be signed in to change notification settings - Fork 407
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support groups claims in dex static connector #3396
Comments
This issue has been automatically marked as stale due to the lack of recent activity. It will soon be closed if no further activity occurs. Thank you for your contributions. |
This issue has been automatically marked as stale due to the lack of recent activity. It will soon be closed if no further activity occurs. Thank you for your contributions. |
This issue has been automatically marked as stale due to the lack of recent activity. It will soon be closed if no further activity occurs. Thank you for your contributions. |
This issue has been automatically marked as stale due to the lack of recent activity. It will soon be closed if no further activity occurs. Thank you for your contributions. |
This issue has been automatically marked as stale due to the lack of recent activity. It will soon be closed if no further activity occurs. Thank you for your contributions. |
This issue has been automatically marked as stale due to the lack of recent activity. It will soon be closed if no further activity occurs. Thank you for your contributions. |
This issue has been automatically marked as stale due to the lack of recent activity. It will soon be closed if no further activity occurs. Thank you for your contributions. |
This issue has been automatically marked as stale due to the lack of recent activity. It will soon be closed if no further activity occurs. Thank you for your contributions. |
We will not implement this, currently we are aiming to get rid of our fork of dex. Ticket should be reopened if we decide that we a) still need that b) we will maintain the fork |
Description
Currently, our RBAC roles are bound to static users via email, which is fine but tedious. In order to simulate production use case and enable proper e2e tests we need
gorup
claim in JWT.dex-users-secrets.yaml
and "kyma-developers" group to developer static user.You can use our old implementation as a reference from here dexidp/dex#1080
Reasons
Currently, Dex version used in Kyma does not support groups in JWT claims in static connector. With groups claim in JWT we can easily test integration scenarios for example in apiserver-proxy simulating production use of roles assigned to groups instead of user emails.
Attachments
The text was updated successfully, but these errors were encountered: