Malthe Borch created NIFI-10571:
-----------------------------------
Summary: Retrieve groups from Azure AD app registration
Key: NIFI-10571
URL: https://issues.apache.org/jira/browse/NIFI-10571
Project: Apache NiFi
Issue Type: New Feature
Reporter: Malthe Borch
When using OIDC authentication with Azure AD app registration, it's
theoretically possible to retrieve _app roles_ along with the identity token
payload.
These app roles can be transformed into groups.
However, for the NiFi authorization system to work, it should be possible to
list the app roles such that policies can be configured based on them. That is,
a user group provider could enumerate the app roles every so often and make
them available for policy assignment.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
