XCP-ng
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Github Auth plugin scope

    Scheduled Pinned Locked Moved Solved
    Xen Orchestra
    2
    2
    167
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      Flying9167
      last edited by

      I've recently added the Github Auth plugin to allow staff within my Github organisation to access XOA with 2FA. Seems like a sensible idea as we use Github anyway.

      When I set the plugin up and tested it all seems great and working. I then tested with a user outside of my GitHub org and that let them in too! (Although with no permissions). I need to reduce the scope of the access to only users in my GitHub org.

      I can't see anywhere on the OAuth App settings which specifies scope. Does anyone have any experience of this?

      julien-fJ 1 Reply Last reply Reply Quote 0
      • julien-fJ
        julien-f Vates 🪐 Co-Founder XO Team @Flying9167
        last edited by

        @Flying9167 It's indeed not possible at this to filter which users are allowed to sign in with XO auth plugins.

        At this time it should be handled at the authentication provider itself and it does not look like GitHub OAuth implementation supports it.

        1 Reply Last reply Reply Quote 0
        • F Flying9167 marked this topic as a question on
        • F Flying9167 has marked this topic as solved on
        • First post
          Last post