Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
G
gitlab-ce
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
1
Merge Requests
1
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
nexedi
gitlab-ce
Commits
cef45681
Commit
cef45681
authored
Mar 02, 2020
by
Luca Leonardo Scorcia
Committed by
Evan Read
Mar 02, 2020
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
docs - Add description of the send_scope_to_token_endpoint config property
parent
8c093cce
Changes
1
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
4 additions
and
0 deletions
+4
-0
doc/administration/auth/oidc.md
doc/administration/auth/oidc.md
+4
-0
No files found.
doc/administration/auth/oidc.md
View file @
cef45681
...
@@ -42,6 +42,7 @@ The OpenID Connect will provide you with a client details and secret for you to
...
@@ -42,6 +42,7 @@ The OpenID Connect will provide you with a client details and secret for you to
'discovery'
=>
true
,
'discovery'
=>
true
,
'client_auth_method'
=>
'query'
,
'client_auth_method'
=>
'query'
,
'uid_field'
=>
'<uid_field>'
,
'uid_field'
=>
'<uid_field>'
,
'send_scope_to_token_endpoint'
=>
'false'
,
'client_options'
=>
{
'client_options'
=>
{
'identifier'
=>
'<your_oidc_client_id>'
,
'identifier'
=>
'<your_oidc_client_id>'
,
'secret'
=>
'<your_oidc_client_secret>'
,
'secret'
=>
'<your_oidc_client_secret>'
,
...
@@ -65,6 +66,7 @@ The OpenID Connect will provide you with a client details and secret for you to
...
@@ -65,6 +66,7 @@ The OpenID Connect will provide you with a client details and secret for you to
discovery
:
true
,
discovery
:
true
,
client_auth_method
:
'
query'
,
client_auth_method
:
'
query'
,
uid_field
:
'
<uid_field>'
,
uid_field
:
'
<uid_field>'
,
send_scope_to_token_endpoint
:
false
,
client_options
:
{
client_options
:
{
identifier
:
'
<your_oidc_client_id>'
,
identifier
:
'
<your_oidc_client_id>'
,
secret
:
'
<your_oidc_client_secret>'
,
secret
:
'
<your_oidc_client_secret>'
,
...
@@ -92,6 +94,8 @@ The OpenID Connect will provide you with a client details and secret for you to
...
@@ -92,6 +94,8 @@ The OpenID Connect will provide you with a client details and secret for you to
-
If not specified, defaults to
`basic`
.
-
If not specified, defaults to
`basic`
.
-
`<uid_field>`
(optional) is the field name from the
`user_info`
details that will be used as
`uid`
value. For example,
`preferred_username`
.
-
`<uid_field>`
(optional) is the field name from the
`user_info`
details that will be used as
`uid`
value. For example,
`preferred_username`
.
If this value is not provided or the field with the configured value is missing from the
`user_info`
details, the
`uid`
will use the
`sub`
field.
If this value is not provided or the field with the configured value is missing from the
`user_info`
details, the
`uid`
will use the
`sub`
field.
-
`send_scope_to_token_endpoint`
is
`true`
by default. In other words, the
`scope`
parameter is normally included in requests to the token endpoint.
However, if your OpenID Connect provider does not accept the
`scope`
parameter in such requests, set this to
`false`
.
-
`client_options`
are the OpenID Connect client-specific options. Specifically:
-
`client_options`
are the OpenID Connect client-specific options. Specifically:
-
`identifier`
is the client identifier as configured in the OpenID Connect service provider.
-
`identifier`
is the client identifier as configured in the OpenID Connect service provider.
-
`secret`
is the client secret as configured in the OpenID Connect service provider.
-
`secret`
is the client secret as configured in the OpenID Connect service provider.
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment