d535a82372
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
27 lines
955 B
YAML
27 lines
955 B
YAML
version: 1
|
|
metadata:
|
|
labels:
|
|
blueprints.goauthentik.io/system: "true"
|
|
name: System - Proxy Provider - Scopes
|
|
entries:
|
|
- identifiers:
|
|
managed: goauthentik.io/providers/proxy/scope-proxy
|
|
model: authentik_providers_oauth2.scopemapping
|
|
attrs:
|
|
name: "authentik default OAuth Mapping: Proxy outpost"
|
|
scope_name: ak_proxy
|
|
description: authentik Proxy - User information
|
|
expression: |
|
|
# This mapping is used by the authentik proxy. It passes extra user attributes,
|
|
# which are used for example for the HTTP-Basic Authentication mapping.
|
|
session_id = None
|
|
if "token" in request.context:
|
|
session_id = request.context.get("token").session_id
|
|
return {
|
|
"sid": session_id,
|
|
"ak_proxy": {
|
|
"user_attributes": request.user.group_attributes(request),
|
|
"is_superuser": request.user.is_superuser,
|
|
}
|
|
}
|