fosrl/docs
1
0
Fork 0
mirror of https://github.com/fosrl/docs.git synced 2025-05-12 21:30:43 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

update idp

Browse source
This commit is contained in:
miloschwartz 2025-04-27 17:58:18 -04:00
parent d1e95d75b3
commit 790c72e9a8
No known key found for this signature in database
2 changed files with 6 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
packages/docusaurus/docs/03-Pangolin/06-Identity Providers/02-auto-provision.md
View file

@ -14,7 +14,7 @@ If auto provision is disabled, organization admins will need to manually create
## Selection Algorithm ## Selection Algorithm
It helpful to think of the auto provisioning process as follows: It is helpful to think of the auto provisioning process as follows:
1. User successfully logs in using an identity provider. 1. User successfully logs in using an identity provider.
2. Pangolin creates a user account for the user. 2. Pangolin creates a user account for the user.
@ -152,4 +152,4 @@ contains(groups, '{{orgId}}')
} }
``` ```
The `{{orgId}}` placeholder will be replaced with the organization ID when the expression is evaluated. When Pangolin evaluates this expression against the "home-lab" organization, it will replace `{{orgId}}` with "home-lab". The result of the expression will return true since the user is a member of the "home-lab" group.

8
packages/docusaurus/docs/03-Pangolin/06-Identity Providers/03-openid-connect.md → packages/docusaurus/docs/03-Pangolin/06-Identity Providers/03-Providers/01-openid-connect.md
View file

@ -17,10 +17,10 @@ Use JMESPath to select attributes from the claims token. See [JMESPath](https://
Determine how to access information from the claims token returned by the identity provider. This is used to map the user information from the identity provider to the user information in Pangolin. Determine how to access information from the claims token returned by the identity provider. This is used to map the user information from the identity provider to the user information in Pangolin.
- Identifer Path - Identifer Path (required)
- This must be unique each user within an identity provider. - This must be unique each user within an identity provider.
- Email Path - Email Path (optional)
- Name Path - Name Path (optional)
- Scopes - Scopes (not JMESPath; must be space-delimited strings)
- The scopes to request from the identity provider. - The scopes to request from the identity provider.
- Generally, `openid profile email` is sufficient. - Generally, `openid profile email` is sufficient.