Skip to content

docs: document enabling forced authentication in config guide #870

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Apr 8, 2025
Merged

docs: document enabling forced authentication in config guide #870

merged 3 commits into from
Apr 8, 2025

Conversation

edibotopic
Copy link
Contributor

  • includes description of forced auth config
  • description is consolidated from config comments
  • want to avoid detailed explanations in how-to, ideally (token refresh aspect could be described in a future, standalone authentication mechanism explanation)

UDENG-6585

@edibotopic edibotopic force-pushed the docs-force_provider_authentication branch from b60a5c3 to d5769cc Compare April 3, 2025 11:04
@edibotopic edibotopic marked this pull request as ready for review April 3, 2025 11:06
@edibotopic edibotopic requested a review from a team as a code owner April 3, 2025 11:06
3v1n0
3v1n0 reviewed Apr 3, 2025
View reviewed changes
@edibotopic edibotopic force-pushed the docs-force_provider_authentication branch from d5769cc to e48505a Compare April 7, 2025 09:05
@edibotopic
Copy link
Contributor Author

Thanks @3v1n0 and @adombeck -- I addressed your comments in e48505a .

Two things to consider for the future:

  • A short explanation page that expands on description of online and offline authentication in docs: document enabling forced authentication in config guide #870 (comment) -- this could be linked out to from this how-to, which we would ideally like to keep concise
  • I would defer to your judgement, but consider whether force_provider_authentication in the config file is sufficiently clear, for the same reasons that you outlined above

adombeck
adombeck reviewed Apr 7, 2025
View reviewed changes
adombeck added a commit to ubuntu/authd-oidc-brokers that referenced this pull request Apr 7, 2025
@adombeck
broker.conf: Improve the force_provider_authentication comment
760439e 
Inspired by the wording in the user documentation
(ubuntu/authd#870).
@adombeck adombeck mentioned this pull request Apr 7, 2025
Merged
adombeck added a commit to ubuntu/authd-oidc-brokers that referenced this pull request Apr 7, 2025
@adombeck
broker.conf: Improve the force_provider_authentication comment
11a2468 
Inspired by the wording in the user documentation
(ubuntu/authd#870).
@edibotopic edibotopic force-pushed the docs-force_provider_authentication branch from e48505a to 3d55345 Compare April 8, 2025 10:25
adombeck added a commit to ubuntu/authd-oidc-brokers that referenced this pull request Apr 8, 2025
@adombeck
broker.conf: Improve the force_provider_authentication comment
1898f90 
Based on the wording in the user documentation
(see ubuntu/authd#870).
@edibotopic
document enabling forced authentication in config guide
74e6dcc 
- includes description of forced auth config
- description is consolidated from config comments
- want to avoid detailed explanations in how-to, ideally (token refresh
aspect could be described in a later authentication mechanism
explanation)
@edibotopic
be more explicit about meaning of forced auth
45ec381 
Makes more clear that when force_provider_authentication is true:

- user needs to be online and provider needs to be reachable
- the authentication is therefore ONLINE with the REMOTE provider

Further explanation is beyond the scope a how-to but the how-to can link
to a supplmentary explanation at a later date.
@edibotopic
place emphasis on remote auth not remote provider
a4b0970 
referring to a remote identity provider introduces needless ambiguity
@edibotopic edibotopic force-pushed the docs-force_provider_authentication branch from 3d55345 to a4b0970 Compare April 8, 2025 12:14
@edibotopic edibotopic merged commit e28f2bf into main Apr 8, 2025
4 checks passed
@edibotopic edibotopic deleted the docs-force_provider_authentication branch April 8, 2025 12:15
adombeck added a commit to ubuntu/authd-oidc-brokers that referenced this pull request Apr 10, 2025
@adombeck
broker.conf: Improve the force_provider_authentication comment
1adf270 
Based on the wording in the user documentation
(see ubuntu/authd#870).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@3v1n0 3v1n0 3v1n0 left review comments

@adombeck adombeck adombeck approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@edibotopic @3v1n0 @adombeck