e0a6d12c55
The previous implementation would attempt to fetch groups using the end-user's Google auth token. This only worked for admin accounts, or users with 'delegated' access to the `admin.directory.group.readonly` API. This commit changes the approach to use a single 'service account' for fetching the groups. This removes the need to add permissions to all regular user accounts. I'll be updating the [meta docs](https://meta.discourse.org/t/226850) with instructions on setting up the service account. This is technically a breaking change in behavior, but the existing implementation was marked experimental, and is currently unusable in production google workspace environments. |
||
|---|---|---|
| .. | ||
| auth_provider.rb | ||
| authenticator.rb | ||
| current_user_provider.rb | ||
| default_current_user_provider.rb | ||
| discord_authenticator.rb | ||
| facebook_authenticator.rb | ||
| github_authenticator.rb | ||
| google_oauth2_authenticator.rb | ||
| managed_authenticator.rb | ||
| result.rb | ||
| twitter_authenticator.rb | ||