OAuth login to specific organization

[ocherfas]

Is it possible to configure Grafana OAuth to be applied to a specific organization?

For example I want to configure generic OAuth with Okta, that when user uses it, grafana will log the user to preconfigured organization that is not the default one.

I tried using allowed_organizations configuration key but I figured it is used for configuration received from the OAuth provider rather than Grafana organizations.

Thanks!

[torkelo]

No this is currently not possible

[RedHat93]

Ciao guys,

is there any update regarding this ticket?
We have the same need, we would like to configure OAuth Access into our Grafana.

But at the same time we would like to assign specific role (Editor/Viewer) for the different Organizations we've configured.

If this is still unsupported, have you got any workaround to make our needs work?

Thanks you so much :)

[fatalglitch]

The other request like this was closed per the above, so is there any update on roadmap for this feature request? Assigning orgs via OAuth is a pretty important feature if you are using Organizations.

[RyanW8]

This would be a great feature to have. It would be even better if we could map oAuth groups or any other attributes to specific orgs.

[AntoineMicheaOpencell]

Agree, that could be very useful to be able to create multi-tenant dashboards.

[Fufusulier]

Indeed, very useful

[m-yosefpor]

any updates on this?

[kminehart]

Since this is an old feature request with some duplicate issues, I'm going to convert this to a discussion where we can continue discussing this.

[nicolas17]

It's especially weird that the LDAP authentication module does support mapping LDAP groups to org_id + role in that org, but the OAuth module doesn't...

[gelicia]

Hello, as you may have heard, we are transitioning away from using discussions to discuss feature requests. We are migrating this discussion to an issue and closing the discussion. The issue is #82992. Feel free to continue the discussion around this there. Thank you!