Closed nonefaken closed 2 months ago
Thanks for trying out Access!
Do you have the --sync-group-memberships-authoritatively
flag configured on the flask sync
command?
https://github.com/discord/access/blob/main/examples/kubernetes/cron-job-syncer.yaml#L21
We also have a Discord server in case you want to debug in real time https://discord.gg/access-enjoyers
I suppose i misunderstood purpose of --sync-group-memberships-authoritatively
and decided not to use it.
Thank you for the tip on https://discord.gg/access-enjoyers 🙇♂️
Hello!
can you please help troubleshoot issue of user not removed from group on expire?
However if i add user to group in Access Portal with expire
..the user is removed in Access portal after expire, but not in Okta. After syncer run, the user is synced back from Okta to Access Portal (re-added back).
In the portal log i see no request to
DELETE / etc.
group resource, butGET
to site pages andPOST /api/bugs/sentry HTTP/1.1
.Would very much appreciate if you help troubleshoot the issue 🙇♂️