Skip to content

Add docs configuration dbms.security.allow_oidc_credential_forwarding_enabled #2657

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Oct 22, 2025
Merged

Add docs configuration dbms.security.allow_oidc_credential_forwarding_enabled #2657

merged 2 commits into from
Oct 22, 2025

Conversation

@evelinadanielsson
Copy link
Contributor

This adds documentation about the new configuration dbms.security.allow_oidc_credential_forwarding_enabled introduced in this PR.

evelinadanielsson
evelinadanielsson commented Oct 14, 2025
View reviewed changes
modules/ROOT/pages/configuration/configuration-settings.adoc Outdated
[frame="topbot", stripes=odd, grid="cols", cols="<1s,<4"]
|===
|Description
a|When set to `true`, remote database aliases are allowed to authenticate to remote databases using OIDC credential forwarding. When set to `false`, authentication of remote database aliases using OIDC credential forwarding is disallowed. Existing aliases that rely on this method remain defined but cannot be used to connect until this setting is enabled.
Copy link
Contributor Author

@evelinadanielsson evelinadanielsson Oct 14, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Alternative description:

When set to true, remote database aliases are allowed to forward OIDC credentials to authenticate on remote Neo4j DBMS. When set to false, OIDC credentials are not allowed to be forwarded to remote DBMS. Existing aliases that rely on this method remain defined but cannot be used to connect until this setting is enabled.

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I like the alternative more. It's clearer, I think.

NataliaIvakina
NataliaIvakina reviewed Oct 14, 2025
View reviewed changes
@NataliaIvakina NataliaIvakina self-assigned this Oct 17, 2025
@evelinadanielsson evelinadanielsson marked this pull request as ready for review October 21, 2025 10:56
@evelinadanielsson evelinadanielsson force-pushed the dev-add-allow-oidc-credential-forwarding-config branch from 084ffe2 to 7a2945e Compare October 21, 2025 10:56
@neo4j-docops-agent
Copy link
Collaborator

neo4j-docops-agent commented Oct 21, 2025
edited
Loading

Thanks for the documentation updates.

The preview documentation has now been torn down - reopening this PR will republish it.

NataliaIvakina
NataliaIvakina approved these changes Oct 21, 2025
View reviewed changes
Copy link
Collaborator

@NataliaIvakina NataliaIvakina left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good!

@evelinadanielsson evelinadanielsson merged commit f3af694 into neo4j:dev Oct 22, 2025
8 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@renetapopova renetapopova renetapopova left review comments

@NataliaIvakina NataliaIvakina NataliaIvakina approved these changes

Assignees

@NataliaIvakina NataliaIvakina

Labels

2025.10

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@evelinadanielsson @neo4j-docops-agent @renetapopova @NataliaIvakina