[pmg-devel] [PATCH pmg-docs v5 5/5] OIDC: add 'Autocreate Users with Assigned Role' description
Markus Frank
m.frank at proxmox.com
Wed Mar 26 16:24:42 CET 2025
Signed-off-by: Markus Frank <m.frank at proxmox.com>
---
new to v5
pmgconfig.adoc | 7 +++++++
1 file changed, 7 insertions(+)
diff --git a/pmgconfig.adoc b/pmgconfig.adoc
index 59a8f52..b39961a 100644
--- a/pmgconfig.adoc
+++ b/pmgconfig.adoc
@@ -1214,6 +1214,13 @@ exist. While authentication is done at the OpenID server, all users still need
an entry in the {pmg} user configuration. You can either add them manually, or
use the `autocreate` option to automatically add new users.
+* `Autocreate Users with Assigned Role` (`autocreate-role-assignment`): By
+default, all autocreated users will be assigned the Audit role. You can either
+assign a fixed xref:pmgconfig_localuser[role] to all autocreated users (for
+example, `source=fixed,fixed-role=helpdesk`), or set a custom claim that is used
+to assign users to different roles (for example,
+`source=from-claim,role-claim=custom_role_claim`).
+
* `Username Claim` (`username-claim`): OpenID claim used to generate the unique
username (`sub` or `preferred_username`).
--
2.39.5
More information about the pmg-devel
mailing list