Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

AddCODER_OIDC_ALLOWED_GROUPS to limit which groups can sign in to Coder #10705

Closed
Assignees
Emyrk
@bpmct

Description

@bpmct

Background

For GitHub, we havehttps://coder.com/docs/v2/latest/cli/server#--oauth2-github-allowed-orgs andhttps://coder.com/docs/v2/latest/cli/server#--oauth2-github-allowed-teams that only allows a subset of GitHub users to log in to Coder.

We do not have something similar for OIDC log ins.

Proposal

  • Add CODER_OIDC_ALLOWED_GROUPS which accepts a list of strings (group names).
  • If a user is not in any of the groups, display an error, similar to the GitHub one
  • Usehttps://coder.com/docs/v2/latest/cli/server#--oidc-group-field to define which groups claim is used to validate against
  • Display a proper error/warning in the server if the claim is not being sent, similar to how we do for group sync

Metadata

Metadata

Assignees

Labels

No labels
No labels

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions

    [8]ページ先頭
    ©2009-2025 Movatter.jp