Skip to content
Snippets Groups Projects

feat: added eduperson scopes to heuristic endpoints

Merged feat: added eduperson scopes to heuristic endpoints
heuristic-page-autorization into main
All threads resolved!
Merged Marek Hlávka requested to merge heuristic-page-autorization into main
All threads resolved!
Compare
and
Show latest version
3 files
+ 29
12
Compare changes
  • Side-by-side
  • Inline
Files
3
config_templates/perun.proxygui.yaml
+ 5
1
@@ -155,11 +155,15 @@ oidc_provider: # REQUIRED for OAuth2/OIDC protection of some endpoints
scopes:
- openid
- perun_consent_api
- eduperson_entitlement
oidc_redirect_uri: "https://proxy.example.org/proxygui/callback" # /callback is the shared callback endpoint for all API endpoints secured by OIDC. It has to be registered with the OIDC provider.
post_logout_redirect_uris:
- uri1
- uri2
eduperson_entitlement: eduperson_entitlement_string # Configurable
authorization_claims: # Configurable claims for endpoint groups
heuristic_pages: # REQUIRED for access to heuristic pages
name: eduperson_entitlement # must be included also in scopes
value: auth_claim_value
mfa_provider: # REQUIRED for MFA protection of some endpoints
client_id: client_id
client_secret: client_secret