-
Notifications
You must be signed in to change notification settings - Fork 2.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Auto-create remote groups #7671
Comments
When REMOTE_AUTH_AUTO_CREATE_GROUPS is True, Netbox will create groups referenced in the REMOTE_AUTH_GROUP_HEADER that don't exist in the database.
When REMOTE_AUTH_AUTO_CREATE_GROUPS is True, Netbox will create groups referenced in the REMOTE_AUTH_GROUP_HEADER that don't exist in the database.
This uses a custom image that includes a solution for netbox-community/netbox#7671.
This uses a custom image that includes a solution for netbox-community/netbox#7671.
This uses a custom image that includes a solution for netbox-community/netbox#7671.
This uses a custom image that includes a solution for netbox-community/netbox#7671.
Deploy netbox behind an oauth2 proxy configured to authenticate against the MOC keycloak instance. Deploys into the netbox-lars namespace. The changes in overlays/lars-devel-2 should ultimately be moved over to the ocp-prod overlay (if we think they make sense), and this commit should probably just be discarded. This includes a patched netbox image that includes a solution for netbox-community/netbox#7671.
Deploy netbox behind an oauth2 proxy configured to authenticate against the MOC keycloak instance. Deploys into the netbox-lars namespace. The changes in overlays/lars-devel-2 should ultimately be moved over to the ocp-prod overlay (if we think they make sense), and this commit should probably just be discarded. This includes a patched netbox image that includes a solution for netbox-community/netbox#7671.
Hi @jeremystretch, I just wanted to check in on this issue and see if I should go ahead and submit a PR for it. |
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. NetBox is governed by a small group of core maintainers which means not all opened issues may receive direct feedback. Please see our contributing guide. |
When REMOTE_AUTH_AUTOCREATE_GROUPS is True, Netbox will create groups referenced in the REMOTE_AUTH_GROUP_HEADER that don't exist in the database. Closes netbox-community#7671
When REMOTE_AUTH_AUTOCREATE_GROUPS is True, Netbox will create groups referenced in the REMOTE_AUTH_GROUP_HEADER that don't exist in the database. Closes netbox-community#7671
When REMOTE_AUTH_AUTOCREATE_GROUPS is True, Netbox will create groups referenced in the REMOTE_AUTH_GROUP_HEADER that don't exist in the database. Closes netbox-community#7671
This issue has been automatically closed due to lack of activity. In an effort to reduce noise, please do not comment any further. Note that the core maintainers may elect to reopen this issue at a later date if deemed necessary. |
Id still like to see this happen |
@larsks looks like this one fell through the cracks unfortunately. Any chance you're still interested in submitting a PR? |
@jeremystretch I'd be happy to update the previous PR. I'll take a look this weekend. |
I unlocked the old PR here: #8603 You should be able to re-open it yourself now, otherwise let me know. |
When REMOTE_AUTH_AUTOCREATE_GROUPS is True, Netbox will create groups referenced in the REMOTE_AUTH_GROUP_HEADER that don't exist in the database. Work was done by Lars Kellogg-Stedman, I just rebased onto the current develop branch. Closes netbox-community#7671
When REMOTE_AUTH_AUTOCREATE_GROUPS is True, Netbox will create groups referenced in the REMOTE_AUTH_GROUP_HEADER that don't exist in the database. Closes netbox-community#7671
Given that this bug caused me problems this week I applied the changes to the current develop and opened PR #12394 |
* Add REMOTE_AUTH_AUTOCREATE_GROUPS When REMOTE_AUTH_AUTOCREATE_GROUPS is True, Netbox will create groups referenced in the REMOTE_AUTH_GROUP_HEADER that don't exist in the database. Closes #7671 * Fix naming of parameter Apply the fix requested by kkthxbye-code in #8603 --------- Co-authored-by: Lars Kellogg-Stedman <[email protected]>
* Add REMOTE_AUTH_AUTOCREATE_GROUPS When REMOTE_AUTH_AUTOCREATE_GROUPS is True, Netbox will create groups referenced in the REMOTE_AUTH_GROUP_HEADER that don't exist in the database. Closes netbox-community#7671 * Fix naming of parameter Apply the fix requested by kkthxbye-code in netbox-community#8603 --------- Co-authored-by: Lars Kellogg-Stedman <[email protected]>
NetBox version
v3.0.8
Feature type
Change to existing functionality
Proposed functionality
Allow NetBox to auto-create groups referenced in the
REMOTE_AUTH_GROUP_HEADER
.Use case
As a data center administrator using Keycloak to manage auth/authz, I would like NetBox to automatically instantiate groups provided by Keycloak when using
REMOTE_AUTH_ENABLED
.With
REMOTE_AUTH_ENABLED
andREMOTE_AUTH_GROUP_SYNC_ENABLED
, it's still necessary to manually create groups before the group sync is effective. I would like to see aREMOTE_AUTH_AUTO_CREATE_GROUPS
setting, analagous toREMOTE_AUTH_AUTO_CREATE_USER
but for groups, that would cause NetBox to automatically create any groups in theREMOTE_AUTH_GROUP_HEADER
. This would allow authorization to be completely delegated to the identity management platform.This is the same feature requested by this comment in #5775.
Database changes
No response
External dependencies
No response
The text was updated successfully, but these errors were encountered: