Closed minrk closed 8 months ago
It's unclear to me a bit whether things like allowed_idps/hosted_domain expanations belong here vs the provider-specific doc pages
It's unclear to me a bit whether things like allowed_idps/hosted_domain expanations belong here vs the provider-specific doc pages.
Those two are odd ducks, they shouldn't be classified as allow config. They are requirements to authenticate currently, and hosted_domain could move to be part of the blocked check if the implementation is refactored.
I'll reflect further on https://github.com/jupyterhub/oauthenticator/pull/729#discussion_r1485885921, but i think there isn't an action point remaining in this PR about it - this LGTM and can be merged.
@minrk - ok to merge?
Thanks for the thoughtful reviews!
Rendered doc: https://oauthenticator--729.org.readthedocs.build/en/729/topic/allowing.html
closes #727