I have a very delicate matter. As a member of ID4me foundation I would like to integrate this Single-Sign-On approach (based on OIDC, slightly different) as additional authentication method within grafana.
As far as I know the following approaches could be feasible to achieve this goal in grafana.
Implement an additional authentication mode for grafana based on the pre-existing “generic_oauth” method
Use existing “auth-proxy” mode of grafana (can be used to integrate any third party login mechanism)
Now I have the following questions:
- Is there any other opportunity than the mentioned approaches above?
- Regarding approach 1: Would it be possible to implement such an additional authentication extension via plugins? (without any code changes inside the grafana software main frame)