Generic OAuth Username

apetzold · March 10, 2021, 2:35pm

Hi,

we are running several Grafana instances with ~50 users and we are currently using LDAP integration for authentication and roles. Now we are investigating how to move to using Generic OAuth with OpenID Connect.

When we tried OAuth with our local OIDC provider we noticed the email address of the user is always used as username. That means new users are created in grafana because the usernames will never match our existing users.

Our local OIDC provider ships attributed like “preferred username” which we’d like to use.

Is there anyone out there who has run into the same problem and maybe has some advise for us how to best proceed?

Thanks,
Andreas

jangaraj · March 10, 2021, 2:49pm

Configure login_attribute_path properly = JMESPath to OIDC claim preferred_username - https://grafana.com/docs/grafana/latest/auth/generic-oauth/`

apetzold · March 13, 2021, 1:26pm

Thanks a lot, that was exactly the pointer we needed.

dv2018f · April 13, 2021, 6:51am

Hello, at present I have encountered this problem, can you share your solution, or the corresponding configuration information,Thx.

Topic		Replies	Views
How to configure Grafana&Keycloak so that grafana can use Keycloak's username instead of email as Grafana's login name? Grafana	3	1712	June 6, 2022
Which fields are expected in /userinfo Grafana	2	1855	July 13, 2017
Grafana 7 using OIDC Grafana	3	4969	September 1, 2020
Grafana with OpenID connect	0	1106	August 20, 2020
Auth_url - generic_oauth Authentication	5	293	December 22, 2022

Generic OAuth Username

Related topics