Hoop.dev is an open-source access gateway that provides secure, seamless, and audited access to databases and infrastructure without exposing credentials or sensitive data.
As of now, if we are authenticating via an OIDC compliant IDP (I'm using Keycloak) we are not able to set the GroupsClaim, being forced to use claim "https://app.hoop.dev/groups" defined here: https://github.com/hoophq/hoop/blob/main/common/proto/const.go#L65.
With this PR you could use an environment variable in case you want to use the standard groups claim (or any other you want).
As of now, if we are authenticating via an OIDC compliant IDP (I'm using Keycloak) we are not able to set the GroupsClaim, being forced to use claim
"https://app.hoop.dev/groups"defined here: https://github.com/hoophq/hoop/blob/main/common/proto/const.go#L65. With this PR you could use an environment variable in case you want to use the standardgroupsclaim (or any other you want).What do you think about this?