Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add patterns to OIDC identity mapping #147

Merged
merged 5 commits into from
Oct 31, 2024
Merged

Add patterns to OIDC identity mapping #147

merged 5 commits into from
Oct 31, 2024

Conversation

alexhung
Copy link
Member

@alexhung alexhung commented Oct 31, 2024
edited
Loading

Closes #145

  • Add 'username_pattern' and 'groups_pattern' attributes
  • Add validation to 'username' attribute to ensure 'scope' attribute is also
  • Don't set 'scope' attribute unless it's not empty string
  • Update documentation to include the same

@alexhung
Add 'username_pattern' and 'groups_pattern' attributes
08b8839 
Add validation to 'username' attribute to ensure 'scope' attribute is also 

Don't set 'scope' attribute unless it's not empty string

Update documentation to include the same
@alexhung
Update permission resource documentation
33268a9
@alexhung
Fix backtick escaping in doc
537dd62
@alexhung alexhung added the enhancement Automatically generated release notes label Oct 31, 2024
@alexhung alexhung marked this pull request as ready for review October 31, 2024 20:22
@alexhung alexhung requested a review from danielmkn as a code owner October 31, 2024 20:22
danielmkn
danielmkn reviewed Oct 31, 2024
View reviewed changes
docs/resources/oidc_identity_mapping.md
Optional:

- `audience` (String) Sets of (space separated) the JFrog services to which the mapping applies. Default value is `*@*`, which applies to all services.
- `expires_in` (Number) Token expiry time in seconds. Default value is 60.
- `groups_pattern` (String) Provide a pattern which is used to map OIDC groups to Artifactory groups.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should you add an example here? It should be inside of {{}}

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I added example in the section above.

danielmkn
danielmkn reviewed Oct 31, 2024
View reviewed changes
docs/resources/oidc_identity_mapping.md
- `username` (String) User name of the OIDC user. Not applicable when `scope` is set to `applied-permissions/groups`. Must be set when `scope` is set to `applied-permissions/roles`.
- `username_pattern` (String) Provide a pattern which is used to map OIDC user to Artifactory user.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should you add an example here? It should be inside of {{}}

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same, look at the TF example

@alexhung alexhung merged commit cd9a35b into main Oct 31, 2024
2 checks passed
@alexhung alexhung deleted the GH-145-add-patterns-to-oidc-identity-mapping branch October 31, 2024 21:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@danielmkn danielmkn danielmkn approved these changes

Assignees
No one assigned
Labels
enhancement Automatically generated release notes
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Importing existing platform_oidc_identity_mapping results in invalid resource configuration
3 participants
@alexhung @danielmkn @jfrogsolutioncicd