I try to get the automatic quota assignment working on ocis 5.0.9. Without success yet by using the docs from Proxy Service Configuration
Environment: ocis 5.0.9, IDP: Keycloak 26.
ocis runs “dockerized” in an LXC container
Task: New users are created in the IDP and autoprovisioned into ocis (PROXY_AUTOPROVISION_ACCOUNTS=true). They get the role “user” and shall have an initial quota of 5 mb. The roles are assigned from OIDC in the ocis.env:
PROXY_ROLE_ASSIGNMENT_DRIVER: "oidc"
PROXY_ROLE_ASSIGNMENT_OIDC_CLAIM: "roles"
proxy.yaml:
role_assignment:
driver: oidc
oidc_role_mapper:
role_claim: roles
role_mapping:
- role_name: admin
claim_value: myAdminRole
- role_name: spaceadmin
claim_value: mySpaceAdminRole
- role_name: user
claim_value: myUserRole
- role_name: guest
claim_value: myGuestRole
role_quotas:
admin: 100MB
guest: 0MB
spaceadmin: 100MB
user: 5MB
A user which has the role “myUserRole” in OIDC/Keycloak is created with role “User” in ocis. But the quota still has “no restriction”
Can someone help me debugging this?