grafana: fix ldap login when someone changed their mail

2023-11-07 19:28:24 +01:00 · 2023-11-07 19:28:24 +01:00 · d10351d633
parent edcab7e7a2
commit d10351d633
1 changed files with 2 additions and 1 deletions
--- a/hosts/grafana/default.nix
+++ b/hosts/grafana/default.nix
@ -1,4 +1,4 @@
-{ config, lib, pkgs, ... }:
+{ config, pkgs, ... }:

 {
  microvm.mem = 4096;
@ -57,6 +57,7 @@
          disable_login_form = true; # only allow OAuth
          icon = "signin";
          name = "auth.c3d2.de";
+          oauth_allow_insecure_email_lookup = true;
          oauth_auto_login = true; # redirect automatically to the only oauth provider
          role_attribute_path = "contains(groups[*], 'grafana-admins') && 'Admin'";
          # https://dexidp.io/docs/custom-scopes-claims-clients/