mirror of
https://github.com/pomerium/pomerium.git
synced 2025-04-28 18:06:34 +02:00
21b9e7890c
Add a new option for filtering to a subset of directory groups in the Pomerium JWT and Impersonate-Group headers. Add a JWTGroupsFilter field to both the Options struct (for a global filter) and to the Policy struct (for per-route filter). These will be populated only from the config protos, and not from a config file. If either filter is set, then for each of a user's groups, the group name or group ID will be added to the JWT groups claim only if it is an exact string match with one of the elements of either filter. |
||
|---|---|---|
| .. | ||
| audit | ||
| cli | ||
| config | ||
| databroker | ||
| device | ||
| events | ||
| identity | ||
| registry | ||
| session | ||
| testdata | ||
| user | ||
| client.go | ||
| docs.go | ||
| health.go | ||
| protoc.bash | ||