I am trying to authenticate and authorize users using Gitlab. On the gitlab side, Ive configured the app as such
On the helm chart side, my config looks like
grafana:
grafana.ini:
server:
root_url: https://grafana.company.com
auth.gitlab:
enabled: true
allow_sign_up: true
client_id: <path:prod/monitoring#GITLAB_CLIENT_ID>
client_secret: <path:prod/monitoring#GITLAB_CLIENT_SECRET>
scopes: read_user, read_api
auth_url: https://gitlab.com/oauth/authorize
token_url: https://gitlab.com/oauth/token
api_url: https://gitlab.com/api/v4
allowed_groups: "company/team-engineering"
role_attribute_path: "contains(groups[*], 'company/team-engineering') && 'Admin' || 'Viewer'"
company/team-engineering is the group I am part of in gitlab.
I am able to successfully login and I can see the UI and all the dashboards but I get logged in as Viewer only. I do not have any Admin privileges.
I though after reading this that all I need to do is
role_attribute_path: "contains(groups[*], 'company/team-engineering') && 'Admin' || 'Viewer'"
but seems like this is not working. Am I missing something ?