e20ff4cb60
keycloak_openid_user_client_role_protocol_mapper.grafana_role_mapper was missing. It is configured to make the client roles for this Application (and only those for this application) available in the grafana_roles claim. We can also disable full scope, as we're not interested in other role mappings. The Terraform files are a bit reorganized, everything configuring the Grafana client lives in grafana.tf (and vice-versa for Forgejo, Buildkite and Gerrit). The only thing left in permissions.tf is global groups, their memberships and mappings. Change-Id: I37b0755f4f8658518083353ec6cc0193e805d5c2 Reviewed-on: https://cl.snix.dev/c/snix/+/30476 Tested-by: besadii Autosubmit: Florian Klink <flokli@flokli.de> Reviewed-by: Jonas Chevalier <zimbatm@zimbatm.com> |
||
|---|---|---|
| .. | ||
| o11y | ||
| www | ||
| .skip-subtree | ||
| archivist.nix | ||
| clbot.nix | ||
| default.nix | ||
| forgejo.nix | ||
| gerrit-autosubmit.nix | ||
| harmonia.nix | ||
| hetzner-cloud.nix | ||
| known-hosts.nix | ||
| monorepo-gerrit.nix | ||
| README.md | ||
| restic.nix | ||
| snix-buildkite.nix | ||
NixOS modules
This folder contains various NixOS modules shared by our NixOS configurations.
It is not read by readTree.