Enabling GitHub Enterprise for Signing In not working

olgoetz · July 14, 2022, 7:26am

What Grafana version and what operating system are you using?^
Enterprise (free)
v9.0.2 (0641b5d0c)
What are you trying to achieve?
Enabling github enterprise authentication
How are you trying to achieve it?
by setting these configs in grafana.ini
What happened?
Authentication via github is not possible as the client secret is never used according the github UI when I hit the “sign in with github” button
What did you expect to happen?
Can you copy/paste the configuration(s) that you are having problems with?

#################################### GitHub Auth ##########################

[auth.github]
enabled = true
allow_sign_up = false
client_id = fea52015e8d3iiiiiiiiiiiiiiiiiiiiii
client_secret = b54ffff5e0fd977df0biiiiiiiiiiiiiiiiiiiiiiiiiiiii
scopes = user:email,read:org
auth_url = https://github.axa.com/api/v3/login/oauth/authorize
token_url = https://github.axa.com/api/v3/login/oauth/access_token
api_url = https://github.axa.com/api/v3
allowed_domains =
team_ids =
allowed_organizations =

Did you receive any errors in the Grafana UI or in related logs? If so, please tell us exactly what they were.
resulting in:
{
“message”: “Must authenticate to access this API.”,
“documentation_url”: “GitHub REST API - GitHub Enterprise Server 3.5 Docs”
}
Did you follow any online instructions? If so, what is the URL?
Configure GitHub OAuth2 Authentication | Grafana documentation

mattabrams · July 20, 2022, 3:03am

welcome to the forum, @olgoetz

try increasing the verbosity of the Grafana server logs to debug and note any errors. For printing to console, set the console logs to debug as well.

olgoetz · July 27, 2022, 12:48pm

Hi,

there are no errors in the grafana.log file after trying signing with githHub

[ssm-user@ip-100-73-25-174 bin]$ sudo tail /var/log/grafana/grafana.log
logger=token t=2022-07-27T12:46:13.56633581Z level=debug msg=FeatureEnabled feature=teamsync enabled=false licenseStatus=NotFound hasLicense=false hasValidLicense=false products="unsupported value type"
logger=token t=2022-07-27T12:46:13.566353006Z level=debug msg=FeatureEnabled feature=teamgroupsync enabled=false licenseStatus=NotFound hasLicense=false hasValidLicense=false products="unsupported value type"
logger=token t=2022-07-27T12:46:13.566372635Z level=debug msg=FeatureEnabled feature=userlimits enabled=false licenseStatus=NotFound hasLicense=false hasValidLicense=false products="unsupported value type"
logger=token t=2022-07-27T12:46:13.5663878Z level=debug msg=FeatureEnabled feature=whitelabeling enabled=false licenseStatus=NotFound hasLicense=false hasValidLicense=false products="unsupported value type"
logger=token t=2022-07-27T12:46:13.566407103Z level=debug msg=FeatureEnabled feature=accesscontrol.enforcement enabled=false licenseStatus=NotFound hasLicense=false hasValidLicense=false products="unsupported value type"
logger=token t=2022-07-27T12:46:13.566431224Z level=debug msg=FeatureEnabled feature=whitelabeling enabled=false licenseStatus=NotFound hasLicense=false hasValidLicense=false products="unsupported value type"
logger=ngalert t=2022-07-27T12:46:18.400985318Z level=debug msg="recording state cache metrics" now=2022-07-27T12:46:18.400977021Z
logger=ngalert t=2022-07-27T12:46:18.401170501Z level=debug msg="alert rules fetched" count=0 disabled_orgs="unsupported value type"
logger=ngalert t=2022-07-27T12:46:28.401235863Z level=debug msg="alert rules fetched" count=0 disabled_orgs="unsupported value type"
logger=ngalert t=2022-07-27T12:46:33.400973192Z level=debug msg="recording state cache metrics" now=2022-07-27T12:46:33.400963252Z

I can also see that the secret of the github auth is never used: