gotosocial/internal/config
Daenney 9cfb69f75d
[feature] Make OIDC admin groups configurable (#1555)
This removes the current default of checking for membership of the admin
or admins group and makes it required to explicitly configure which
groups should grant admin access, if any.

Relying on the implicit default of admin or admins is potentially
dangerous as that group may contain a different subset of people that we
may wish to grant admin access to GtS. This is probably not an issue for
a single-person instance, but for a community instance different admin
groups may exist in an OIDC provider for different applications.

I'm explicitly opting for not defaulting the value of oidc-admin-groups
to admin,admins because I think it's better for those things to be
explicitly configured.
2023-02-25 16:37:39 +00:00
..
gen [chore] Update/add license headers for 2023 (#1304) 2023-01-05 12:43:00 +01:00
testdata [feature] Add a request ID and include it in logs (#1476) 2023-02-17 12:02:29 +01:00
config.go [feature] Make OIDC admin groups configurable (#1555) 2023-02-25 16:37:39 +00:00
config_test.go [feature] support configuring database caches (#1246) 2022-12-11 13:03:15 +00:00
defaults.go [feature] Add a request ID and include it in logs (#1476) 2023-02-17 12:02:29 +01:00
flags.go [feature] Add a request ID and include it in logs (#1476) 2023-02-17 12:02:29 +01:00
global.go [chore] Update/add license headers for 2023 (#1304) 2023-01-05 12:43:00 +01:00
helpers.gen.go [feature] Make OIDC admin groups configurable (#1555) 2023-02-25 16:37:39 +00:00
state.go [chore] Update/add license headers for 2023 (#1304) 2023-01-05 12:43:00 +01:00
validate.go [feature] Add a request ID and include it in logs (#1476) 2023-02-17 12:02:29 +01:00
validate_test.go [chore] Update/add license headers for 2023 (#1304) 2023-01-05 12:43:00 +01:00