search

grafana / grizzly

A utility for managing Jsonnet dashboards against the Grafana API
https://grafana.github.io/grizzly/
Apache License 2.0
464 stars 59 forks source link

[Feature Request]: Support SSO #451

Open F21 opened 1 month ago

F21 commented 1 month ago

Feature Request

Grafana users signed in via SSO do not have a password, so it's not possible to use grr config set grafana.user and grr config set grafana.token for SSO users.

The current work around would be for the SSO user to create a service account and service account token and set it using grr config set grafana.token.

This is a bit clunkly as the user must remember to delete the service account after using it and they need to be given permissions to create service accounts.

It would be nice if grizzly supports SSO login, for example, if it could open the browser to prompt for the user to log in, which then returns a token to grizzly.

malcolmholmes commented 3 weeks ago

Grizzly is a client for Grafana - it depends upon Grafana's API functionality. Currently, Grafana is a consumer of SSO, but not a provider. Until Grafana becomes a provider, we won't be able to offer this functionality, and I'm not aware of it being on any roadmaps.

F21 commented 3 weeks ago

If grizzly is able to use Grafana's session cookies, per https://github.com/grafana/grizzly/issues/258, then potentially, SSO can be compeleted on Grafana's side and return a token to grizzly.