OAuth: Generic OAuth role mapping support (#17149)

Adds support for Generic OAuth role mapping. A new configuration setting for generic oauth is added named role_attribute_path which accepts a JMESPath expression. Only Grafana roles named Viewer, Editor or Admin are accepted. Closes #9766
2025-02-25 18:55:37 -06:00 · 2019-11-05 21:56:42 +01:00
parent 17f36d0492
commit 7a3d1c0e4b
8 changed files with 145 additions and 15 deletions
--- a/conf/sample.ini
+++ b/conf/sample.ini
@@ -329,7 +329,8 @@
 ;token_url = https://foo.bar/login/oauth/access_token
 ;api_url = https://foo.bar/user
 ;team_ids =
-;allowed_organizations =
+;allowed_organizations = 
+;role_attribute_path =
 ;tls_skip_verify_insecure = false
 ;tls_client_cert =
 ;tls_client_key =