Any tips on getting OIDC auth set up with Azure? <...
# troubleshoots
square-solstice-69079
04/20/2022, 7:20 AMAny tips on getting OIDC auth set up with Azure? https://datahubspace.slack.com/archives/C029A3M079U/p1649971636421599 https://datahubproject.io/docs/how/auth/sso/configure-oidc-react-azure
b
big-carpet-38439
04/20/2022, 3:57 PMThis is very strange. It appears that the AUTH_OIDC_SCOPE env variable is not being picked up. Can you try to remove the quotes around the scope and redpeloy
s
square-solstice-69079
04/21/2022, 8:16 AM@big-carpet-38439 what should I have in the scope variable?
square-solstice-69079
04/21/2022, 8:22 AMI tried with my email without quotes, but still the same. Is it possible to find the error message? Using the quickstart method on a single EC2 instance. I asked the IAM team to add the datahub url as the callback url, like https://datahub.domain.comp.com
square-solstice-69079
04/21/2022, 8:24 AMthis is what I get when I go to the discovery URI, so it seems to be set up (correctly?)
square-solstice-69079
04/21/2022, 8:25 AMsquare-solstice-69079
04/21/2022, 10:21 AMOk I got alot further now, so understanding now that "openid profile email" does not refer to some type of email, its just the 3 options. So setting it to "openid" gets us to the company login page. After some looking, this seems to be what it is stuck at now after logging in:
square-solstice-69079
04/21/2022, 1:04 PMmanaged to fix it by just removing that config variable completely @big-carpet-38439 why would that be?