summaryrefslogtreecommitdiff
path: root/internal/api/auth
diff options
context:
space:
mode:
Diffstat (limited to 'internal/api/auth')
-rw-r--r--internal/api/auth/callback.go9
1 files changed, 7 insertions, 2 deletions
diff --git a/internal/api/auth/callback.go b/internal/api/auth/callback.go
index bef7b013f..5f0425dea 100644
--- a/internal/api/auth/callback.go
+++ b/internal/api/auth/callback.go
@@ -284,10 +284,15 @@ func (m *Module) createUserFromOIDC(ctx context.Context, claims *oidc.Claims, ex
}
// check if the user is in any recognised admin groups
+ adminGroups := config.GetOIDCAdminGroups()
var admin bool
+LOOP:
for _, g := range claims.Groups {
- if strings.EqualFold(g, "admin") || strings.EqualFold(g, "admins") {
- admin = true
+ for _, ag := range adminGroups {
+ if strings.EqualFold(g, ag) {
+ admin = true
+ break LOOP
+ }
}
}
generated by cgit v1.2.3 (git 2.46.0) at 2025-07-13 16:31:58 +0000