thary/sp-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(auth,roundcube): sp.roundcube.admins inherits sp.roundcube.users

Browse Source
This commit is contained in:
Alexander Tomokhov
2024-12-27 08:07:45 +04:00
parent c127145425
commit dd4a356ae7
1 changed files with 1 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
sp-modules/roundcube/module.nix
View File

@@ -73,7 +73,7 @@ in
services.kanidm.provision = lib.mkIf is-auth-enabled { services.kanidm.provision = lib.mkIf is-auth-enabled {
groups = { groups = {
"sp.roundcube.admins".members = [ "sp.admins" ]; "sp.roundcube.admins".members = [ "sp.admins" ];
"sp.roundcube.users".present = true; "sp.roundcube.users".members = [ "sp.roundcube.admins" ];
}; };
systems.oauth2.roundcube = { systems.oauth2.roundcube = {
displayName = "Roundcube"; displayName = "Roundcube";
@@ -91,14 +91,6 @@ in
]; ];
}; };
removeOrphanedClaimMaps = true; removeOrphanedClaimMaps = true;
# add more scopes when a user is a member of specific group
supplementaryScopeMaps."sp.roundcube.admins" = [ "admin" ];
claimMaps.groups = {
joinType = "array";
valuesByGroup = {
"sp.roundcube.admins" = [ "admin" "test" ];
};
};
}; };
}; };
}; };