Can Graylog user roles be regulated by OIDC identity providers?

Dmitrii · September 5, 2024, 11:32pm

Hello

By the looks of OIDC documentation, all users authenticated with an OIDC identity provider get the same set of roles defined in “Default Roles” field of “Edit OIDC Authentication Service” form. Is that correct?

Or is there a way to make Graylog use roles assigned to the user by the identity provider? For example, if you log in to Grafana with an IdP, the app reads role from a field on id_token and gives the user corresponding permissions.

Thanks.

system · September 19, 2024, 11:33pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
OIDC: reject users without any roles Graylog Central (peer support)	5	53	September 20, 2024
Regarding Graylog OIDC Graylog Central (peer support)	5	1044	January 19, 2023
Graylog AD user role Graylog Central (peer support)	2	371	July 27, 2018
User permissions by role: What does the default Reader grant access to exactly? Graylog Central (peer support)	4	2607	December 21, 2017
LDAP Authentication -> some Users always Admin Graylog Add-ons	3	1210	November 5, 2018

Can Graylog user roles be regulated by OIDC identity providers?

Related topics