Malthe Borch created NIFI-10571: ----------------------------------- Summary: Retrieve groups from Azure AD app registration Key: NIFI-10571 URL: https://issues.apache.org/jira/browse/NIFI-10571 Project: Apache NiFi Issue Type: New Feature Reporter: Malthe Borch
When using OIDC authentication with Azure AD app registration, it's theoretically possible to retrieve _app roles_ along with the identity token payload. These app roles can be transformed into groups. However, for the NiFi authorization system to work, it should be possible to list the app roles such that policies can be configured based on them. That is, a user group provider could enumerate the app roles every so often and make them available for policy assignment. -- This message was sent by Atlassian Jira (v8.20.10#820010)