mirror of
https://github.com/outbackdingo/firezone.git
synced 2026-01-27 18:18:55 +00:00
d5294fb639
Before, any user logging into via the OIDC connector would need to have an identity created beforehand with their known `sub` id. This presented a chicken-and-egg scenario where this was only populated in the `Identity Providers` settings flow by an admin, preventing regular users from signing in. With this change, Admins can now create identities for actors and specify an `email` address or `sub` claim value to match against for incoming authentications to the connector. This will allow end-users to authenticate with the configured OIDC connector. Fixes #3308