Define roles and claim checks in login panel
Nextcloud: https://github.com/pulsejet/nextcloud-oidc-login
Requires/Claims:
- id: Unique ID for username, can be kratos ID
- name: Fullname
- mail: Full email
- is_admin: If in admin group
- groups: array or space sperated string of NC groups
Zulip: -https://github.com/zulip/zulip/blob/main/zproject/prod_settings_template.py AUTHENTICATION_BACKENDS = zproject.backends.GenericOpenIdConnectBackend
Zulip does support kind of learn groups from SAML. It should not be to difficult to port that to the OIDC connector
Edited by Mart van Santen