Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

connector/github: grab membership of orgs and/or teams instead of just teams #691

Closed
danielfm opened this issue Nov 16, 2016 · 5 comments
Closed

connector/github: grab membership of orgs and/or teams instead of just teams #691

danielfm opened this issue Nov 16, 2016 · 5 comments
Labels
area/connector priority/P2

Comments

@danielfm
Copy link

danielfm commented Nov 16, 2016
edited
Loading

After reading the quick start guide (and the source code, since the documentation at this point is lacking), I managed to get the GitHub connector to work with the following configuration:

# ./examples/config-dev.yaml
connectors:
- type: github
  id: github
  name: github
  config:
    redirectURI: http://127.0.0.1:5556/dex/callback
    clientID: ***
    clientSecret: ***
    org: my-org

With this, I can start the dex server and the example openid client and complete the authentication workflow:

# First terminal window
./bin/dex serve examples/config-dev.yaml

# Second terminal window
./bin/example-app

The only thing I missed was the ability to only authorize users from some organization. I noticed the source code has the concept of groups, but I tried to set the org configuration key but it doesn't seem to do anything.

Am I doing something wrong?
@ericchiang
Copy link
Contributor

and the source code, since the documentation at this point is lacking

Yep apologies, we're still working on finalizing the GitHub connector (and what a group means to it). You can track documentation progress for login strategies here: #678

The only thing I missed was the ability to only authorize users from some organization.

No connectors have the ability to restrict login to a subset of the users in a backing management system.

This has been brought up and we'd be open to someone putting together a more complete proposal. Perhaps a dup of #66?

@danielfm
Copy link
Author

@ericchiang sure, #66 seems to address what I described in this issue.

Sorry for the dup, feel free to close this!

@ericchiang ericchiang mentioned this issue Nov 16, 2016
Open
@ericchiang
Copy link
Contributor

@danielfm cool. A few other issues depend on this so I've add it to the "v2.0.0" milestone.

However I think this brings up a good point about organizations and groups. Since GitHub has two concepts of groups, orgs and teams, we probably want to be able to grab both. Right now we only do teams within an org.

Cool if I commandeer your issue for that issue? That is, rename this issue to be something like

connector/github: grab membership of orgs and/or teams instead of just teams

@danielfm danielfm changed the title connector/github: Only authorize users from the given organization connector/github: grab membership of orgs and/or teams instead of just teams Nov 16, 2016
@danielfm
Copy link
Author

Done!

@estroz
Copy link
Contributor

estroz commented Aug 24, 2017
edited
Loading

Fixed by #1013 and #1039

@estroz estroz closed this as completed Aug 24, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/connector priority/P2
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@danielfm @ericchiang @estroz