[feature/oidc] Add support for very basic RBAC (#2642)

* Add support for very basic RBAC * Add some small tests for allowedGroup and adminGroup * Switch to table-driven tests
author: 9p4 <vcs@ersei.net> 2024-02-27 10:07:29 -0500
committer: GitHub <noreply@github.com> 2024-02-27 16:07:29 +0100
commit: 9bf448be7aa5e2468d5a6302d7c37ebad0f84176 (patch)
tree: c03e0079e84d8fd412cc23abc9ebb1b1118559e8 /docs/configuration
parent: [chore/docs] Various little docs updates (#2691) (diff)
download: gotosocial-9bf448be7aa5e2468d5a6302d7c37ebad0f84176.tar.xz
1 files changed, 6 insertions, 0 deletions
diff --git a/docs/configuration/oidc.md b/docs/configuration/oidc.md
index b30cd8410..482c0fa3f 100644
--- a/docs/configuration/oidc.md
+++ b/docs/configuration/oidc.md
@@ -80,6 +80,12 @@ oidc-scopes:
 oidc-link-existing: false
 
 # Array of string. If the returned ID token contains a 'groups' claim that matches one of the
+# groups in oidc-allowed-groups, then this user will be granted access on the GtS instance. If the array is empty,
+# then all groups will be granted permission.
+# Default: []
+oidc-allowed-groups: []
+
+# Array of string. If the returned ID token contains a 'groups' claim that matches one of the
 # groups in oidc-admin-groups, then this user will be granted admin rights on the GtS instance
 # Default: []
 oidc-admin-groups: []
author	9p4 <vcs@ersei.net>	2024-02-27 10:07:29 -0500
committer	GitHub <noreply@github.com>	2024-02-27 16:07:29 +0100
commit	9bf448be7aa5e2468d5a6302d7c37ebad0f84176 (patch)
tree	c03e0079e84d8fd412cc23abc9ebb1b1118559e8 /docs/configuration
parent	[chore/docs] Various little docs updates (#2691) (diff)
download	gotosocial-9bf448be7aa5e2468d5a6302d7c37ebad0f84176.tar.xz