Hi,
I’m not able to configure Google OIDC to fetch groups and put them into userinfo_claims.
Probably, the issue below looks similar and have some explanation - https://github.com/hashicorp/vault-plugin-auth-jwt/issues/83.
1 Like
I have not managed to get this to work either, the UID of users via google OIDC don’t change for the life of the account so I got around this by generating a terraform file via a 3rd party call to the google API
Do you mind sharing the code?