search
WebsiteGithubDiscordLinkedinProduct HuntAWS Marketplace
githubEdit

Supported Identity Providers

The list of supported auth providers for RBAC

hashtag
Generic OAuth

Any OAuth provider not on the list of all providers below this one.

Set up the auth itself first, docs here and here. Don't forget "custom-params.type: oauth".

      subjects:
        - provider: oauth
          type: role
          value: "role-name"
        - provider: oauth
          type: user
          value: "zoidberg"

hashtag
Google

Set up google auth first

        - provider: oauth_google
          type: domain
          value: "memelord.lol"
        - provider: oauth_google
          type: user
          value: "[email protected]"

hashtag
Github

Set up github auth first

hashtag
Cognito

Set up cognito auth first

hashtag
Azure

Set up AzureAD OAUTH2 auth first

hashtag
LDAP

Set up LDAP auth first

hashtag
Active Directory

hashtag
Okta

You can map Okta Groups to roles. First, confirm that your okta administrator has included the group claim or the groups will not be passed in the auth token.

Ensure roles-field in the auth config is set to groups and that groups is included in the scope, see here for more details.

Configure the role mapping to the okta group via generic provider mentioned above:

hashtag
GoAuthentic

You can map GoAuthentic Groups to roles. First, confirm that your GoAuthentic administrator has included the profile claim or the groups will not be passed in the auth token.

Ensure roles-field in the auth config is set to groups and that profile is included in the scope, as groups are passed by default in the profile scope. See here for more details.

Configure the role mapping to the GoAuthentic group via generic provider mentioned above:

PreviousRBAC (Role based access control)NextData masking

Last updated

Was this helpful?