search

pulsejet / nextcloud-oidc-login

Nextcloud login via a single OpenID Connect 1.0 provider
https://apps.nextcloud.com/apps/oidc_login
GNU Affero General Public License v3.0
219 stars 59 forks source link

login_filter syntax #269

Open Nyu-code opened 5 months ago

Nyu-code commented 5 months ago

Hello, I'm currently using Keycloak as ID Provider, and I would like to use the login_filter to filter connections to the Nextcloud with it. But the problem is I don't understand the syntax for this variable like I have an ID Token like this: 

  "realm_access": {
    "roles": [
      "offline_access",
      "PD Managers",
      "default-roles-oidc nextcloud",
      "uma_authorization"
    ]
  },
  "name": "Kelly Winters Winters",
  "preferred_username": "kwinters",
  "given_name": "Kelly Winters",
  "family_name": "Winters",
  "email": "kwinters@mycompany.com"

And I would like to give login_filter the claim path on realm_access => roles and put "PD Managers" as oidc_login_filter_allowed_values. Anyone have an idea for the claim path ?

I thank you by advance for your help