You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@nifi.apache.org by "Bryan Bende (Jira)" <ji...@apache.org> on 2020/11/18 16:27:00 UTC

[jira] [Commented] (NIFI-7823) Retrieve groups from OIDC token using KeyClock

    [ https://issues.apache.org/jira/browse/NIFI-7823?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17234781#comment-17234781 ] 

Bryan Bende commented on NIFI-7823:
-----------------------------------

In NIFI-7888, I implemented an approach for obtaining groups from a SAML identity provider and making use of them later in NiFi. We should be able to use the same approach if we can understand how groups could be returned from an OIDC login response.

> Retrieve groups from OIDC token using KeyClock
> ----------------------------------------------
>
>                 Key: NIFI-7823
>                 URL: https://issues.apache.org/jira/browse/NIFI-7823
>             Project: Apache NiFi
>          Issue Type: Wish
>          Components: Security
>            Reporter: Raz Dobkies
>            Priority: Major
>
> Nifi will can retrueve groups from a token if we will develop KeyCloakUserGroupProvider.
> Keycloak does implement a lot of related functionality, including groups, users, and such. It would be great to have a first-class integration available.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)