Skip to content

Commit ab67eab

Browse files
paulohtb6paulohtb6
committed
add prop reference
1 parent 0a72213 commit ab67eab

1 file changed

Lines changed: 98 additions & 0 deletions

File tree

modules/reference/partials/properties/cluster-properties.adoc

Lines changed: 98 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -13277,6 +13277,59 @@ endif::[]
1327713277
|===
1327813278

1327913279

13280+
=== nested_group_behavior
13281+
13282+
Behavior for handling nested groups when extracting groups from authentication tokens. With `none`, the group is left alone (for example, `/group/child/grandchild`). With `suffix`, Redpanda extracts the final component from the nested group (for example, `/group/child/grandchild` becomes `grandchild`).
13283+
13284+
[cols="1s,2a"]
13285+
|===
13286+
| Property | Value
13287+
13288+
| Type
13289+
| `string` (enum)
13290+
13291+
| Accepted values
13292+
|
13293+
ifndef::env-cloud[]
13294+
`none`, `suffix`
13295+
endif::[]
13296+
ifdef::env-cloud[]
13297+
`none`, `suffix`
13298+
endif::[]
13299+
13300+
13301+
| Default
13302+
|
13303+
ifdef::env-cloud[]
13304+
Available in the Redpanda Cloud Console
13305+
endif::[]
13306+
ifndef::env-cloud[]
13307+
`none`
13308+
endif::[]
13309+
13310+
| Nullable
13311+
| No
13312+
13313+
| Requires restart
13314+
| No
13315+
13316+
ifndef::env-cloud[]
13317+
| Restored on xref:manage:whole-cluster-restore.adoc[Whole Cluster Restore]
13318+
| Yes
13319+
endif::[]
13320+
13321+
ifndef::env-cloud[]
13322+
| Visibility
13323+
| User
13324+
endif::[]
13325+
13326+
| Related topics
13327+
|
13328+
* xref:manage:security/authorization/gbac.adoc[Group-Based Access Control (GBAC)]
13329+
13330+
|===
13331+
13332+
1328013333
=== node_isolation_heartbeat_timeout
1328113334

1328213335
How long after the last heartbeat request a node will wait before considering itself to be isolated.
@@ -13546,6 +13599,51 @@ endif::[]
1354613599

1354713600
// end::redpanda-cloud[]
1354813601

13602+
=== oidc_group_claim_path
13603+
13604+
A https://goessner.net/articles/JsonPath/[JSON path^] expression that tells Redpanda where to find group information in the OIDC token payload. The path must point to a claim containing group names as either a JSON array or a comma-separated string.
13605+
13606+
[cols="1s,2a"]
13607+
|===
13608+
| Property | Value
13609+
13610+
| Type
13611+
| `string`
13612+
13613+
13614+
13615+
| Default
13616+
|
13617+
ifdef::env-cloud[]
13618+
Available in the Redpanda Cloud Console
13619+
endif::[]
13620+
ifndef::env-cloud[]
13621+
`$.groups`
13622+
endif::[]
13623+
13624+
| Nullable
13625+
| No
13626+
13627+
| Requires restart
13628+
| No
13629+
13630+
ifndef::env-cloud[]
13631+
| Restored on xref:manage:whole-cluster-restore.adoc[Whole Cluster Restore]
13632+
| Yes
13633+
endif::[]
13634+
13635+
ifndef::env-cloud[]
13636+
| Visibility
13637+
| User
13638+
endif::[]
13639+
13640+
| Related topics
13641+
|
13642+
* xref:manage:security/authorization/gbac.adoc[Group-Based Access Control (GBAC)]
13643+
13644+
|===
13645+
13646+
1354913647
=== oidc_keys_refresh_interval
1355013648

1355113649
The frequency of refreshing the JSON Web Keys (JWKS) used to validate access tokens.

0 commit comments

Comments
 (0)