habsi/authentik
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

website/integrations: Add note regarding custom scopes in Hashicorp Vault OIDC documentation (#11668)

Browse Source 
Co-authored-by: Marc 'risson' Schmitt <marc.schmitt@risson.space>
This commit is contained in:
generically-named
2024-10-18 23:46:08 +10:30
committed by GitHub
parent 0751b91893
commit 24d69ff5ed
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
website/integrations/services/hashicorp-vault/index.md
View File

@ -88,5 +88,8 @@ vault write auth/oidc/role/reader \
policies="reader" policies="reader"
``` ```
:::note
If you intend to create [external groups](https://developer.hashicorp.com/vault/tutorials/auth-methods/oidc-auth#create-an-external-vault-group) in Vault to manage user access the OIDC role will need to specifically request a custom scope using the `oidc_scopes` option when creating the OIDC role.
:::
You should then be able to sign in via OIDC You should then be able to sign in via OIDC
`vault login -method=oidc role="reader"` `vault login -method=oidc role="reader"`