minio/docs
1
0
Fork 0
mirror of https://github.com/minio/docs.git synced 2025-07-27 08:41:57 +03:00
Code Activity

Clarifying how to use groups with OIDC

Browse Source
This commit is contained in:
Daryl White
2022-05-19 12:58:51 -05:00
parent 162ef08b7c
commit 7d34eab0eb
1 changed files with 6 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
source/security/openid-external-identity-management/external-authentication-with-openid-identity-provider.rst
View File

@ -126,10 +126,12 @@ provider for instructions on configuring user claims.
MinIO provides :ref:`built-in policies <minio-policy-built-in>` for basic access MinIO provides :ref:`built-in policies <minio-policy-built-in>` for basic access
control. You can create new policies using the :mc:`mc admin policy` command, or control. You can create new policies using the :mc:`mc admin policy` command, or
by using the MinIO Console. MinIO does not support assigning :ref:`groups by using the MinIO Console.
<minio-groups>` to an :abbr:`OIDC (OpenID Connect)` managed identity. Specify
any and all policies to attach to the user as part of its :abbr:`JWT (JWT)` MinIO does not support using MinIO :ref:`groups <minio-groups>` with :abbr:`OIDC (OpenID Connect)`.
policy claim. Instead, an :abbr:`OIDC (OpenID Connect)` administrator can use the configured OIDC claim to list multiple, comma-separated MinIO :ref:`policies <minio-policy>` to assign to the user.
The OIDC administrator can create a type of "group" assignment managed entirely within :abbr:`OIDC (OpenID Connect)`.
For example, ``'policy[,policy]'``.
.. toctree:: .. toctree::
:titlesonly: :titlesonly: