Skip to content

Commit 9270e22

Browse files
cminteycmintey
committed
clarify docs
1 parent 7df3489 commit 9270e22

File tree

2 files changed

+3
-3
lines changed

2 files changed

+3
-3
lines changed

docs/docs/documentation/getting-started/authentication/oidc.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -13,7 +13,7 @@ Signing in with OAuth will automatically find your account in Mealie and link to
1313

1414
## Provider Setup
1515

16-
Before you can start using OIDC Authentication, you must first configure a new client application in your identity provider. Your identity provider must support the OAuth **Authorization Code** flow (with PKCE). The steps will vary by provider, but generally, the steps are as follows.
16+
Before you can start using OIDC Authentication, you must first configure a new client application in your identity provider. Your identity provider must support the OAuth **Authorization Code flow with PKCE**. The steps will vary by provider, but generally, the steps are as follows.
1717

1818
1. Create a new client application
1919
- The Provider type should be OIDC or OAuth2

docs/docs/documentation/getting-started/installation/backend-config.md

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -85,8 +85,8 @@ For usage, see [Usage - OpenID Connect](../authentication/oidc.md)
8585
| OIDC_SIGNUP_ENABLED | True | Enables new users to be created when signing in for the first time with OIDC |
8686
| OIDC_CONFIGURATION_URL | None | The URL to the OIDC configuration of your provider. This is usually something like https://auth.example.com/.well-known/openid-configuration |
8787
| OIDC_CLIENT_ID | None | The client id of your configured client in your provider |
88-
| OIDC_USER_GROUP| None | If specified, this group must be present in the user's group claim in order to authenticate |
89-
| OIDC_ADMIN_GROUP | None | If this group is present in the group claims, the user will be set as an admin |
88+
| OIDC_USER_GROUP| None | If specified, only users belonging to this group will be able to successfully authenticate, regardless of the OIDC_ADMIN_GROUP |
89+
| OIDC_ADMIN_GROUP | None | If specified, users belonging to this group will be made an admin |
9090
| OIDC_AUTO_REDIRECT | False | If `True`, then the login page will be bypassed an you will be sent directly to your Identity Provider. You can still get to the login page by adding `?direct=1` to the login URL |
9191
| OIDC_PROVIDER_NAME | OAuth | The provider name is shown in SSO login button. "Login with <OIDC_PROVIDER_NAME\>" |
9292
| OIDC_REMEMBER_ME | False | Because redirects bypass the login screen, you cant extend your session by clicking the "Remember Me" checkbox. By setting this value to true, a session will be extended as if "Remember Me" was checked |

0 commit comments

Comments
 (0)