[OAuth] Unable to assign role based on groups

  • What Grafana version and what operating system are you using?
    10.2.2 (Docker image 14bdea0920487c9b11b77cf48c90a7cd8868311d51f88ad54f4517cebe39f8a8)

  • What are you trying to achieve?
    I’m trying to assign roles to my users based on their groups from External Provider (Authentik)

  • How are you trying to achieve it?
    Mostly followed Grafana | authentik

  • What happened?
    Role assigned is always Viewers, or at least the “default” role in ROLE_ATTRIBUTE_PATH parameter

If I set

contains(groups[*], 'GrafanaAdmins') && 'Admin' || contains(groups[*], 'Grafana Editors') && 'Editor' || 'Viewer'

Then it’s always viewer

If I set

contains(groups[*], 'GrafanaAdmins') && 'Admin' || contains(groups[*], 'Grafana Editors') && 'Editor' || 'Admin'

Then it’s always Admin

  • What did you expect to happen?

Users in “GrafanaAdmins” groups should have the role Admin in grafana

  • Can you copy/paste the configuration(s) that you are having problems with?
PATH=/usr/share/grafana/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
GF_PATHS_CONFIG=/etc/grafana/grafana.ini
GF_PATHS_DATA=/var/lib/grafana
GF_PATHS_HOME=/usr/share/grafana
GF_PATHS_LOGS=/var/log/grafana
GF_PATHS_PLUGINS=/var/lib/grafana/plugins
GF_PATHS_PROVISIONING=/etc/grafana/provisioning
GF_AUTH_GENERIC_OAUTH_ENABLED=false
GF_AUTH_GENERIC_OAUTH_NAME=authentik
GF_AUTH_GENERIC_OAUTH_CLIENT_ID=xxxxx
GF_AUTH_GENERIC_OAUTH_CLIENT_SECRET=xxxxxx
GF_AUTH_GENERIC_OAUTH_SCOPES=openid profile email
GF_AUTH_GENERIC_OAUTH_AUTH_URL=https :// sso[.]xxxxxxxx[.]fr/application/o/authorize/
GF_AUTH_GENERIC_OAUTH_TOKEN_URL=https :// sso[.]xxxxxxxx[.]fr/application/o/token/
GF_AUTH_GENERIC_OAUTH_API_URL=https :// sso[.]xxxxxxxxx[.]fr/application/o/userinfo/
GF_AUTH_SIGNOUT_REDIRECT_URL=https :// sso[.]xxxxxxxxx[.]fr/application/o/grafana/end-session/
GF_AUTH_OAUTH_AUTO_LOGIN=true
GF_AUTH_GENERIC_OAUTH_ROLE_ATTRIBUTE_PATH=contains(groups[*], 'Grafana Admins') && 'Admin' || contains(groups[*], 'Grafana Editors') && 'Editor' || 'Viewer'
GF_SERVER_ROOT_URL=https :// grafana[.]xxxxxxxxxxxxx[.]fr
GF_AUTH_GENERIC_ALLOW_ASSIGN_GRAFANA_ADMIN=true
GF_AUTH_GENERIC_ROLE_ATTRIBUTE_STRICT=true
GF_LOG_LEVEL=debug
GF_AUTH_GENERIC_OAUTH_GROUPS_ATTRIBUTE_PATH=groups
GF_AUTH_GENERIC_OAUTH_LOGIN_ATTRIBUTE_PATH=preferred_username
  • Did you receive any errors in the Grafana UI or in related logs? If so, please tell us exactly what they were.

No error but grafana logs show role affectation to Viewer despite the groups are found

  • Did you follow any online instructions? If so, what is the URL?

Mostly digged in https :// grafana[.]com/docs/grafana/latest/setup-grafana/configure-security/configure-authentication/generic-oauth/ + some forum post about related issue.

Also checked jmespath.org, seems good

Relevant Logs :

2023-12-06T23:25:47.168049424Z logger=http.server t=2023-12-06T23:25:47.167986603Z level=error msg="Failed to parse user ID" error="identifier is not initialized"

2023-12-06T23:25:47.170166401Z logger=context userId=0 orgId=0 uname= t=2023-12-06T23:25:47.170091981Z level=info msg="OAuth auto login enabled. Redirecting to /login/generic_oauth"

2023-12-06T23:25:47.170227071Z logger=context userId=0 orgId=0 uname= t=2023-12-06T23:25:47.170167471Z level=info msg="Request Completed" method=GET path=/login status=307 remote_addr=89.89.7.92 time_ms=8 duration=8.89369ms size=56 referer= handler=/login

2023-12-06T23:25:47.180905787Z logger=context userId=0 orgId=0 uname= t=2023-12-06T23:25:47.180774687Z level=info msg="Request Completed" method=GET path=/login/generic_oauth status=302 remote_addr=89.89.7.92 time_ms=0 duration=173.371µs size=318 referer= handler=/login/:name

2023-12-06T23:25:47.699991154Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.699878433Z level=debug msg="Getting user info"

2023-12-06T23:25:47.700022384Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.699908093Z level=debug msg="Extracting user info from OAuth token"

2023-12-06T23:25:47.700189164Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.700111084Z level=debug msg="Received id_token" raw_json="{\"iss\":\"https :// sso[.]xxxxxxxxxxxxxx[.]fr/application/o/grafana/\",\"sub\":\"aaaaaaaa\",\"aud\":\"NQTEUnsPX7HNpPDkFJsKm3dRk0FO8hKpuBDT4jcL\",\"exp\":1704497147,\"iat\":1701905147,\"auth_time\":1701897703,\"acr\":\"goauthentik.io/providers/oauth2/default\",\"at_hash\":\"4aMPoNtjdLJ4xyBjwQZ2Ag\"}" data="Name: , Displayname: , Login: , Username: , Email: , Upn: , Attributes: map[]"

2023-12-06T23:25:47.700204764Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.700140154Z level=debug msg="Getting user info from API"

2023-12-06T23:25:47.750272535Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.750174465Z level=debug msg="HTTP GET" url=https :// sso[.]xxxxxxxxxxxxxx[.]fr/application/o/userinfo/ status="200 OK" response_body="{\"email\": \"zzzz@xxxxxxxxxxxxxx[.]fr\", \"email_verified\": true, \"name\": \"Arthur\", \"given_name\": \"Arthur\", \"preferred_username\": \"arthur\", \"nickname\": \"arthur\", \"groups\": [\"download access\", \"GrafanaAdmins\"], \"sub\": \"aaaaaaaa\"}"

2023-12-06T23:25:47.750336225Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.750267445Z level=debug msg="Received user info response from API" raw_json="{\"email\": \"zzzz@xxxxxxxxxxxxxx[.]fr\", \"email_verified\": true, \"name\": \"Arthur\", \"given_name\": \"Arthur\", \"preferred_username\": \"arthur\", \"nickname\": \"arthur\", \"groups\": [\"download access\", \"GrafanaAdmins\"], \"sub\": \"aaaaaaaa\"}" data="Name: Arthur, Displayname: , Login: , Username: , Email: zzzz@xxxxxxxxxxxxxx[.]fr, Upn: , Attributes: map[]"

2023-12-06T23:25:47.750359535Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.750292265Z level=debug msg="Processing external user info" source=token data="Name: , Displayname: , Login: , Username: , Email: , Upn: , Attributes: map[]"

2023-12-06T23:25:47.750368495Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.750314235Z level=debug msg="Unable to find user info name"

2023-12-06T23:25:47.750377625Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.750327045Z level=debug msg="Searching for login among JSON" loginAttributePath=preferred_username

2023-12-06T23:25:47.750653586Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.750599306Z level=debug msg="Processing external user info" source=API data="Name: Arthur, Displayname: , Login: , Username: , Email: zzzz@xxxxxxxxxxxxxx[.]fr, Upn: , Attributes: map[]"

2023-12-06T23:25:47.750672206Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.750624496Z level=debug msg="Setting user info name from name field"

2023-12-06T23:25:47.750681766Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.750637476Z level=debug msg="Searching for login among JSON" loginAttributePath=preferred_username

2023-12-06T23:25:47.750713786Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.750687976Z level=debug msg="Set user info email from extracted email" email=zzzz@xxxxxxxxxxxxxx[.]fr

2023-12-06T23:25:47.750787257Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.750745587Z level=debug msg="Setting user info groups from extracted groups"

2023-12-06T23:25:47.750802327Z logger=oauth.generic_oauth t=2023-12-06T23:25:47.750761217Z level=debug msg="User info result" result="Id: aaaaaaaa, Name: Arthur, Email: zzzz@xxxxxxxxxxxxxx[.]fr, Login: arthur, Role: Viewer, Groups: [download access GrafanaAdmins]"

2023-12-06T23:25:47.781118919Z logger=user.sync t=2023-12-06T23:25:47.781034419Z level=debug msg="Updating auth connection for user" id=

2023-12-06T23:25:47.806323274Z logger=login.authinfo.store t=2023-12-06T23:25:47.806213114Z level=debug msg="Updated user_auth" user_id=2 auth_id=aaaaaaaa auth_module=oauth_generic_oauth rows=1

2023-12-06T23:25:47.808886503Z logger=org.sync t=2023-12-06T23:25:47.808775222Z level=debug msg="Syncing organization roles" id=user:2 extOrgRoles=map[1:Viewer]

2023-12-06T23:25:47.813289308Z logger=accesscontrol.service t=2023-12-06T23:25:47.813188837Z level=debug msg="Fetch permissions from store" key=rbac-permissions-1-user-2

2023-12-06T23:25:47.815830386Z logger=accesscontrol.service t=2023-12-06T23:25:47.815757526Z level=debug msg="Cache permissions" key=rbac-permissions-1-user-2

Any idea ?

Thanks

1 Like

This doesn’t make sense GF_AUTH_GENERIC_OAUTH_GROUPS_ATTRIBUTE_PATH=groups

Here was one space added:
GF_AUTH_GENERIC_OAUTH_ROLE_ATTRIBUTE_PATH=contains(groups[*], 'Grafana Admins') (it should be GrafanaAdmins not Grafana Admins)

Login as superadmin and verify in settings page that GF_AUTH_GENERIC_OAUTH_ROLE_ATTRIBUTE_PATH was applied correctly (there can be problems with quotes, escaping, …)

Hi,

Just found it was a bit better with this. If I remove it, the groups seems not matched at all :

2023-12-07T20:22:35.144128246Z logger=oauth.generic_oauth t=2023-12-07T20:22:35.144092056Z level=debug msg="User info result" result="Id: 21db1eaa624155860df625172d98e7bfd76768e28b04de7bac0824a33a9c058c, Name: Arthur, Email: xxxxxxxxx@xxxxxxxxxxxx.fr, Login: arthur, Role: Viewer, Groups: []"

Yeah sorry it was due to some experiments, but the result is the same without the extra space

I don’t see anything special

Also pasted this in od on Linux

0000000   c   o   n   t   a   i   n   s   (   g   r   o   u   p   s   [
0000020   *   ]   ,       '   G   r   a   f   a   n   a   A   d   m   i
0000040   n   s   '   )       &   &       '   A   d   m   i   n   '
0000060   |   |       c   o   n   t   a   i   n   s   (   g   r   o   u
0000100   p   s   [   *   ]   ,       '   G   r   a   f   a   n   a
0000120   E   d   i   t   o   r   s   '   )       &   &       '   E   d
0000140   i   t   o   r   '       |   |       '   V   i   e   w   e   r
0000160   '  \n
0000162

It seems there is no hidden character.

You are not doing authorisation based on groups, so you don’t need GF_AUTH_GENERIC_OAUTH_GROUPS_ATTRIBUTE_PATH - that may also confuse Grafana.

Why you have disabled GF_AUTH_GENERIC_OAUTH_ENABLED=false?

I understand !

Has been disabled just during some debug steps as I didn’t found a way to switch back to admin account (with basic auth) with Oauth enabled

Try again and post setup debug logs again, please. Try also 10.1.5 version.

Hi,

Sorry for the late answer.

Here the current config:

PATH=/usr/share/grafana/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
GF_PATHS_CONFIG=/etc/grafana/grafana.ini
GF_PATHS_DATA=/var/lib/grafana
GF_PATHS_HOME=/usr/share/grafana
GF_PATHS_LOGS=/var/log/grafana
GF_PATHS_PLUGINS=/var/lib/grafana/plugins
GF_PATHS_PROVISIONING=/etc/grafana/provisioning
GF_AUTH_GENERIC_OAUTH_ENABLED=true
GF_AUTH_GENERIC_OAUTH_NAME=authentik
GF_AUTH_GENERIC_OAUTH_CLIENT_ID=NQTEUnsPX7HNpPDkFJsKm3dRk0FO8hKpuBDT4jcL
GF_AUTH_GENERIC_OAUTH_CLIENT_SECRET=xxxxxxxxxxxxxxxxxxxxxx
GF_AUTH_GENERIC_OAUTH_SCOPES=openid profile email
GF_AUTH_GENERIC_OAUTH_AUTH_URL=https://xxxxx.xxxxxxxxxxx.fr/application/o/authorize/
GF_AUTH_GENERIC_OAUTH_TOKEN_URL=https://xxxx.xxxxxxxxxxxx.fr/application/o/token/
GF_AUTH_GENERIC_OAUTH_API_URL=https://xxxx.xxxxxxxxxxxx.fr/application/o/userinfo/
GF_AUTH_SIGNOUT_REDIRECT_URL=https://xxxxx.xxxxxxxxxx.fr/application/o/grafana/end-session/
GF_AUTH_OAUTH_AUTO_LOGIN=true
GF_AUTH_GENERIC_OAUTH_ROLE_ATTRIBUTE_PATH=contains(groups[*], 'GrafanaAdmins') && 'Admin' || contains(groups[*], 'Grafana Editors') && 'Editor' || 'Viewer'
GF_SERVER_ROOT_URL=https://grafana.xxxxxxxxxxx.fr
GF_AUTH_GENERIC_OAUTH_ALLOW_ASSIGN_GRAFANA_ADMIN=true
GF_AUTH_GENERIC_ROLE_ATTRIBUTE_STRICT=true
GF_LOG_LEVEL=debug
GF_AUTH_GENERIC_OAUTH_LOGIN_ATTRIBUTE_PATH=preferred_username

and logs

2023-12-17T17:50:42.546573380Z Grafana server is running with elevated privileges. This is not recommended
2023-12-17T17:50:42.555443450Z logger=settings t=2023-12-17T17:50:42.555302469Z level=info msg="Starting Grafana" version=10.2.2 commit=161e3cac5075540918e3a39004f2364ad104d5bb branch=HEAD compiled=2023-11-20T12:28:00Z
2023-12-17T17:50:42.555651051Z logger=settings t=2023-12-17T17:50:42.55556133Z level=warn msg="[Deprecated] The oauth_auto_login configuration setting is deprecated. Please use auto_login inside auth provider section instead."
2023-12-17T17:50:42.555764781Z logger=settings t=2023-12-17T17:50:42.555710571Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_ENABLED=true"
2023-12-17T17:50:42.556110893Z logger=settings t=2023-12-17T17:50:42.556017303Z level=info msg="Config loaded from" file=/usr/share/grafana/conf/defaults.ini
2023-12-17T17:50:42.556141974Z logger=settings t=2023-12-17T17:50:42.556036623Z level=info msg="Config loaded from" file=/etc/grafana/grafana.ini
2023-12-17T17:50:42.556156354Z logger=settings t=2023-12-17T17:50:42.556050473Z level=info msg="Config overridden from command line" arg="default.paths.data=/var/lib/grafana"
2023-12-17T17:50:42.556169714Z logger=settings t=2023-12-17T17:50:42.556064123Z level=info msg="Config overridden from command line" arg="default.paths.logs=/var/log/grafana"
2023-12-17T17:50:42.556181384Z logger=settings t=2023-12-17T17:50:42.556076413Z level=info msg="Config overridden from command line" arg="default.paths.plugins=/var/lib/grafana/plugins"
2023-12-17T17:50:42.556192934Z logger=settings t=2023-12-17T17:50:42.556089133Z level=info msg="Config overridden from command line" arg="default.paths.provisioning=/etc/grafana/provisioning"
2023-12-17T17:50:42.556207514Z logger=settings t=2023-12-17T17:50:42.556101633Z level=info msg="Config overridden from command line" arg="default.log.mode=console"
2023-12-17T17:50:42.556219184Z logger=settings t=2023-12-17T17:50:42.556115793Z level=info msg="Config overridden from Environment variable" var="GF_PATHS_DATA=/var/lib/grafana"
2023-12-17T17:50:42.556230174Z logger=settings t=2023-12-17T17:50:42.556128554Z level=info msg="Config overridden from Environment variable" var="GF_PATHS_LOGS=/var/log/grafana"
2023-12-17T17:50:42.556240684Z logger=settings t=2023-12-17T17:50:42.556145964Z level=info msg="Config overridden from Environment variable" var="GF_PATHS_PLUGINS=/var/lib/grafana/plugins"
2023-12-17T17:50:42.556251264Z logger=settings t=2023-12-17T17:50:42.556158284Z level=info msg="Config overridden from Environment variable" var="GF_PATHS_PROVISIONING=/etc/grafana/provisioning"
2023-12-17T17:50:42.556262064Z logger=settings t=2023-12-17T17:50:42.556170284Z level=info msg="Config overridden from Environment variable" var="GF_SERVER_ROOT_URL=https://grafana.xxxxxxxxxxx.fr"
2023-12-17T17:50:42.556272784Z logger=settings t=2023-12-17T17:50:42.556186294Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_SIGNOUT_REDIRECT_URL=https://sso.xxxxxxxxxxx.fr/application/o/grafana/end-session/"
2023-12-17T17:50:42.556286844Z logger=settings t=2023-12-17T17:50:42.556198794Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_OAUTH_AUTO_LOGIN=true"
2023-12-17T17:50:42.556297104Z logger=settings t=2023-12-17T17:50:42.556213144Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_NAME=authentik"
2023-12-17T17:50:42.556331385Z logger=settings t=2023-12-17T17:50:42.556225184Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_ENABLED=true"
2023-12-17T17:50:42.556342785Z logger=settings t=2023-12-17T17:50:42.556239484Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_CLIENT_ID=NQTEUnsPX7HNpPDkFJsKm3dRk0FO8hKpuBDT4jcL"
2023-12-17T17:50:42.556352235Z logger=settings t=2023-12-17T17:50:42.556251774Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_CLIENT_SECRET=*********"
2023-12-17T17:50:42.556362705Z logger=settings t=2023-12-17T17:50:42.556265674Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_SCOPES=openid profile email"
2023-12-17T17:50:42.556376315Z logger=settings t=2023-12-17T17:50:42.556279604Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_LOGIN_ATTRIBUTE_PATH=preferred_username"
2023-12-17T17:50:42.556388875Z logger=settings t=2023-12-17T17:50:42.556295944Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_ROLE_ATTRIBUTE_PATH=contains(groups[*], 'GrafanaAdmins') && 'Admin' || contains(groups[*], 'Grafana Editors') && 'Editor' || 'Viewer'"
2023-12-17T17:50:42.556401755Z logger=settings t=2023-12-17T17:50:42.556313075Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_AUTH_URL=https://sso.xxxxxxxxxxx.fr/application/o/authorize/"
2023-12-17T17:50:42.556413135Z logger=settings t=2023-12-17T17:50:42.556327425Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_TOKEN_URL=https://sso.xxxxxxxxxxx.fr/application/o/token/"
2023-12-17T17:50:42.556424585Z logger=settings t=2023-12-17T17:50:42.556350805Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_API_URL=https://sso.xxxxxxxxxxx.fr/application/o/userinfo/"
2023-12-17T17:50:42.556437095Z logger=settings t=2023-12-17T17:50:42.556363425Z level=info msg="Config overridden from Environment variable" var="GF_AUTH_GENERIC_OAUTH_ALLOW_ASSIGN_GRAFANA_ADMIN=true"
2023-12-17T17:50:42.556447835Z logger=settings t=2023-12-17T17:50:42.556377575Z level=info msg="Config overridden from Environment variable" var="GF_LOG_LEVEL=debug"
2023-12-17T17:50:42.556459875Z logger=settings t=2023-12-17T17:50:42.556390285Z level=info msg=Target target=[all]
2023-12-17T17:50:42.556469825Z logger=settings t=2023-12-17T17:50:42.556416685Z level=info msg="Path Home" path=/usr/share/grafana
2023-12-17T17:50:42.556479565Z logger=settings t=2023-12-17T17:50:42.556429355Z level=info msg="Path Data" path=/var/lib/grafana
2023-12-17T17:50:42.556490726Z logger=settings t=2023-12-17T17:50:42.556441395Z level=info msg="Path Logs" path=/var/log/grafana
2023-12-17T17:50:42.556501386Z logger=settings t=2023-12-17T17:50:42.556453475Z level=info msg="Path Plugins" path=/var/lib/grafana/plugins
2023-12-17T17:50:42.556511866Z logger=settings t=2023-12-17T17:50:42.556465445Z level=info msg="Path Provisioning" path=/etc/grafana/provisioning
2023-12-17T17:50:42.556522956Z logger=settings t=2023-12-17T17:50:42.556477055Z level=info msg="App mode production"
2023-12-17T17:50:42.558164815Z logger=sqlstore t=2023-12-17T17:50:42.558096434Z level=info msg="Connecting to DB" dbtype=sqlite3
2023-12-17T17:50:42.561160512Z logger=migrator t=2023-12-17T17:50:42.561058331Z level=info msg="Starting DB migrations"
2023-12-17T17:50:42.594976168Z logger=migrator t=2023-12-17T17:50:42.593936633Z level=info msg="migrations completed" performed=0 skipped=517 duration=1.606669ms
2023-12-17T17:50:42.594979178Z logger=sqlstore t=2023-12-17T17:50:42.594432195Z level=debug msg="Ensuring main org and admin user exist"
2023-12-17T17:50:42.597212631Z logger=secrets t=2023-12-17T17:50:42.597139341Z level=info msg="Envelope encryption state" enabled=true currentprovider=secretKey.v1
2023-12-17T17:50:42.607263337Z logger=tsdb.cloudwatch t=2023-12-17T17:50:42.607176607Z level=debug msg=Initializing
2023-12-17T17:50:42.607951251Z logger=tsdb.prometheus t=2023-12-17T17:50:42.607912091Z level=debug msg=Initializing
2023-12-17T17:50:42.610036492Z logger=accesscontrol t=2023-12-17T17:50:42.609968582Z level=debug msg="Adding scope attribute resolver" prefix=folders:name:
2023-12-17T17:50:42.610054593Z logger=accesscontrol t=2023-12-17T17:50:42.609989212Z level=debug msg="Adding scope attribute resolver" prefix=folders:id:
2023-12-17T17:50:42.610061513Z logger=accesscontrol t=2023-12-17T17:50:42.609993072Z level=debug msg="Adding scope attribute resolver" prefix=folders:uid:
2023-12-17T17:50:42.667070581Z logger=local.finder t=2023-12-17T17:50:42.6669844Z level=debug msg="Loading plugin" path=/usr/share/grafana/public/app/plugins/datasource/alertmanager/plugin.json
2023-12-17T17:50:42.693444766Z logger=plugin.mssql t=2023-12-17T17:50:42.693374656Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693467416Z logger=plugin.grafana-azure-monitor-datasource t=2023-12-17T17:50:42.693393136Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693486276Z logger=plugin.prometheus t=2023-12-17T17:50:42.693415616Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693489886Z logger=plugin.mysql t=2023-12-17T17:50:42.693419276Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693493566Z logger=plugin.grafana-testdata-datasource t=2023-12-17T17:50:42.693422806Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693497186Z logger=plugin.grafana t=2023-12-17T17:50:42.693425986Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693512816Z logger=plugin.postgres t=2023-12-17T17:50:42.693429046Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693516736Z logger=plugin.tempo t=2023-12-17T17:50:42.693432236Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693523916Z logger=plugin.stackdriver t=2023-12-17T17:50:42.693436706Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693527687Z logger=plugin.elasticsearch t=2023-12-17T17:50:42.693440426Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693531327Z logger=plugin.cloudwatch t=2023-12-17T17:50:42.693443876Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693534967Z logger=plugin.grafana-pyroscope-datasource t=2023-12-17T17:50:42.693448166Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693538697Z logger=plugin.parca t=2023-12-17T17:50:42.693451456Z level=debug msg="Successfully started backend plugin process"
2023-12-17T17:50:42.693542377Z logger=local.finder t=2023-12-17T17:50:42.693482556Z level=warn msg="Skipping finding plugins as directory does not exist" path=/usr/share/grafana/plugins-bundled
2023-12-17T17:50:42.693887989Z logger=secrets.kvstore t=2023-12-17T17:50:42.693844648Z level=debug msg="secrets manager evaluator returned false" reason="remote secret management plugin disabled because the property `secrets.use_plugin` is not set to `true`"
2023-12-17T17:50:42.693907569Z logger=secrets.kvstore t=2023-12-17T17:50:42.693851998Z level=debug msg="secrets kvstore is using the default (SQL) implementation for secrets management"
2023-12-17T17:50:42.693914809Z logger=accesscontrol t=2023-12-17T17:50:42.693861948Z level=debug msg="Adding scope attribute resolver" prefix=datasources:name:
2023-12-17T17:50:42.693926989Z logger=accesscontrol t=2023-12-17T17:50:42.693866418Z level=debug msg="Adding scope attribute resolver" prefix=datasources:id:
2023-12-17T17:50:42.700061233Z logger=accesscontrol t=2023-12-17T17:50:42.700005413Z level=debug msg="Adding scope attribute resolver" prefix=dashboards:id:
2023-12-17T17:50:42.700073033Z logger=accesscontrol t=2023-12-17T17:50:42.700019593Z level=debug msg="Adding scope attribute resolver" prefix=dashboards:uid:
2023-12-17T17:50:42.700751547Z logger=query_data t=2023-12-17T17:50:42.700705817Z level=info msg="Query Service initialization"
2023-12-17T17:50:42.700766017Z logger=live t=2023-12-17T17:50:42.700713297Z level=debug msg="GrafanaLive initialization" ha=false
2023-12-17T17:50:42.709270504Z logger=live.push_http t=2023-12-17T17:50:42.709134534Z level=info msg="Live Push Gateway initialization"
2023-12-17T17:50:42.709897248Z logger=ngalert.multiorg.alertmanager t=2023-12-17T17:50:42.709851898Z level=debug msg="Synchronizing Alertmanagers for orgs"
2023-12-17T17:50:42.711576907Z logger=infra.kvstore.sql t=2023-12-17T17:50:42.711501237Z level=debug msg="got kvstore value" orgId=1 namespace=alertmanager key=notifications value=
2023-12-17T17:50:42.712148010Z logger=infra.kvstore.sql t=2023-12-17T17:50:42.712106Z level=debug msg="got kvstore value" orgId=1 namespace=alertmanager key=silences value=
2023-12-17T17:50:42.725920177Z logger=ngalert.multiorg.alertmanager t=2023-12-17T17:50:42.725818207Z level=debug msg="Done synchronizing Alertmanagers for orgs"
2023-12-17T17:50:42.726276889Z logger=ngalert.sender.router t=2023-12-17T17:50:42.726225999Z level=debug msg="Attempting to sync admin configs" count=0
2023-12-17T17:50:42.726287749Z logger=ngalert.sender.router t=2023-12-17T17:50:42.726249379Z level=debug msg="Finish of admin configuration sync"
2023-12-17T17:50:42.729302376Z logger=accesscontrol t=2023-12-17T17:50:42.729243866Z level=debug msg="Adding scope attribute resolver" prefix=library.panels:uid:
2023-12-17T17:50:45.060122494Z logger=accesscontrol t=2023-12-17T17:50:45.060024923Z level=debug msg="Adding scope attribute resolver" prefix=annotations:id:
2023-12-17T17:50:45.060266745Z logger=plugindashboards t=2023-12-17T17:50:45.060218524Z level=debug msg="Looking for app dashboard updates"
2023-12-17T17:50:45.060754877Z logger=infra.usagestats.collector t=2023-12-17T17:50:45.060708667Z level=info msg="registering usage stat providers" usageStatsProvidersLen=2
2023-12-17T17:50:45.060974849Z logger=provisioning.plugins t=2023-12-17T17:50:45.060933468Z level=debug msg="Looking for plugin provisioning files" path=/etc/grafana/provisioning/plugins
2023-12-17T17:50:45.061229330Z logger=provisioning.plugins t=2023-12-17T17:50:45.06118688Z level=debug msg="Validating plugins"
2023-12-17T17:50:45.061239330Z logger=provisioning.notifiers t=2023-12-17T17:50:45.0611954Z level=debug msg="Looking for alert notification provisioning files" path=/etc/grafana/provisioning/notifiers
2023-12-17T17:50:45.061521542Z logger=provisioning.notifiers t=2023-12-17T17:50:45.061469611Z level=debug msg="Validating alert notifications"
2023-12-17T17:50:45.061536772Z logger=provisioning.alerting t=2023-12-17T17:50:45.061483631Z level=debug msg="looking for alerting provisioning files" path=/etc/grafana/provisioning/alerting
2023-12-17T17:50:45.061636512Z logger=provisioning.alerting t=2023-12-17T17:50:45.061597242Z level=info msg="starting to provision alerting"
2023-12-17T17:50:45.061646512Z logger=provisioning.alerting t=2023-12-17T17:50:45.061603082Z level=debug msg="read all alerting files" file_count=0
2023-12-17T17:50:45.061651272Z logger=provisioning.alerting t=2023-12-17T17:50:45.061619972Z level=info msg="finished to provision alerting"
2023-12-17T17:50:45.061739743Z logger=server t=2023-12-17T17:50:45.061691293Z level=debug msg="NOTIFY_SOCKET environment variable empty or unset, can't send systemd notification"
2023-12-17T17:50:45.061754543Z logger=server t=2023-12-17T17:50:45.061698573Z level=debug msg="Waiting on services..."
2023-12-17T17:50:45.061766293Z logger=server t=2023-12-17T17:50:45.061709943Z level=debug msg="Starting background service" service=*anonimpl.AnonDeviceService
2023-12-17T17:50:45.061775543Z logger=server t=2023-12-17T17:50:45.061731553Z level=debug msg="Starting background service" service=*updatechecker.GrafanaService
2023-12-17T17:50:45.061785223Z logger=grafana.update.checker t=2023-12-17T17:50:45.061743833Z level=debug msg="Checking for updates"
2023-12-17T17:50:45.061795763Z logger=server t=2023-12-17T17:50:45.061702333Z level=debug msg="Starting background service" service=*provisioning.ProvisioningServiceImpl
2023-12-17T17:50:45.061827713Z logger=server t=2023-12-17T17:50:45.061736183Z level=debug msg="Starting background service" service=*cleanup.CleanUpService
2023-12-17T17:50:45.061838593Z logger=server t=2023-12-17T17:50:45.061747683Z level=debug msg="Starting background service" service=*notifications.NotificationService
2023-12-17T17:50:45.061853743Z logger=server t=2023-12-17T17:50:45.061780743Z level=debug msg="Starting background service" service=*live.GrafanaLive
2023-12-17T17:50:45.061900004Z logger=server t=2023-12-17T17:50:45.061839243Z level=debug msg="Starting background service" service=*pushhttp.Gateway
2023-12-17T17:50:45.061907914Z logger=server t=2023-12-17T17:50:45.061840313Z level=debug msg="Starting background service" service=*store.dummyEntityEventsService
2023-12-17T17:50:45.061912014Z logger=server t=2023-12-17T17:50:45.061876504Z level=debug msg="Stopped background service" service=*store.dummyEntityEventsService reason=null
2023-12-17T17:50:45.061920454Z logger=server t=2023-12-17T17:50:45.061875854Z level=debug msg="Starting background service" service=*rendering.RenderingService
2023-12-17T17:50:45.061973094Z logger=server t=2023-12-17T17:50:45.061895314Z level=debug msg="Starting background service" service=*tracing.TracingService
2023-12-17T17:50:45.062002774Z logger=server t=2023-12-17T17:50:45.061942754Z level=debug msg="Starting background service" service=*api.HTTPServer
2023-12-17T17:50:45.062009444Z logger=server t=2023-12-17T17:50:45.061964124Z level=debug msg="Starting background service" service=*authinfoservice.Implementation
2023-12-17T17:50:45.062013414Z logger=login.authinfo t=2023-12-17T17:50:45.061976164Z level=debug msg="Started AuthInfo Metrics collection service"
2023-12-17T17:50:45.062017234Z logger=server t=2023-12-17T17:50:45.061933174Z level=debug msg="Starting background service" service=*statscollector.Service
2023-12-17T17:50:45.062020964Z logger=server t=2023-12-17T17:50:45.061963934Z level=debug msg="Starting background service" service=*updatechecker.PluginsService
2023-12-17T17:50:45.062045515Z logger=server t=2023-12-17T17:50:45.061976734Z level=debug msg="Starting background service" service=*pluginstore.Service
2023-12-17T17:50:45.062060065Z logger=server t=2023-12-17T17:50:45.061953524Z level=debug msg="Starting background service" service=*ngalert.AlertNG
2023-12-17T17:50:45.062064695Z logger=ngalert t=2023-12-17T17:50:45.062005724Z level=debug msg=Starting
2023-12-17T17:50:45.062176245Z logger=server t=2023-12-17T17:50:45.062061325Z level=debug msg="Starting background service" service=*metric.Service
2023-12-17T17:50:45.062198015Z logger=rendering t=2023-12-17T17:50:45.061948264Z level=debug msg="No image renderer found/installed. For image rendering support please install the grafana-image-renderer plugin. Read more at https://grafana.com/docs/grafana/latest/administration/image_rendering/"
2023-12-17T17:50:45.062209785Z logger=server t=2023-12-17T17:50:45.061938804Z level=debug msg="Starting background service" service=*migrations.SecretMigrationProviderImpl
2023-12-17T17:50:45.062219195Z logger=server t=2023-12-17T17:50:45.062085475Z level=debug msg="Starting background service" service=*dynamic.KeyRetriever
2023-12-17T17:50:45.062244396Z logger=infra.lockservice t=2023-12-17T17:50:45.062104865Z level=debug msg="Start LockExecuteAndRelease" actionName="secret migration task "
2023-12-17T17:50:45.062256566Z logger=server t=2023-12-17T17:50:45.061953034Z level=debug msg="Starting background service" service=*manager.ServiceAccountsService
2023-12-17T17:50:45.062267526Z logger=serviceaccounts.background t=2023-12-17T17:50:45.062173465Z level=debug msg="Service initialized"
2023-12-17T17:50:45.062285706Z logger=server t=2023-12-17T17:50:45.062019524Z level=debug msg="Starting background service" service=*manager.SecretsService
2023-12-17T17:50:45.062295586Z logger=server t=2023-12-17T17:50:45.062023174Z level=debug msg="Starting background service" service=*metrics.InternalMetricsService
2023-12-17T17:50:45.062298606Z logger=server t=2023-12-17T17:50:45.062051685Z level=debug msg="Starting background service" service=*store.standardStorageService
2023-12-17T17:50:45.062309306Z logger=grafanaStorageLogger t=2023-12-17T17:50:45.062273826Z level=info msg="Storage starting"
2023-12-17T17:50:45.062380716Z logger=server t=2023-12-17T17:50:45.061927884Z level=debug msg="Starting background service" service=*migration.MigrationService
2023-12-17T17:50:45.062386196Z logger=server t=2023-12-17T17:50:45.062292326Z level=debug msg="Stopped background service" service=*store.standardStorageService reason=null
2023-12-17T17:50:45.062392516Z logger=server t=2023-12-17T17:50:45.062067605Z level=debug msg="Starting background service" service=*loginattemptimpl.Service
2023-12-17T17:50:45.062396386Z logger=infra.lockservice t=2023-12-17T17:50:45.062303366Z level=debug msg="Start LockExecuteAndRelease" actionName="alerting migration"
2023-12-17T17:50:45.062400207Z logger=server t=2023-12-17T17:50:45.062090255Z level=debug msg="Starting background service" service=*supportbundlesimpl.Service
2023-12-17T17:50:45.062404117Z logger=server t=2023-12-17T17:50:45.062047195Z level=debug msg="Starting background service" service=*service.UsageStats
2023-12-17T17:50:45.062458827Z logger=cleanup t=2023-12-17T17:50:45.061851373Z level=debug msg="Found old rendered file to delete" folder=/var/lib/grafana/png deleted=0 kept=0
2023-12-17T17:50:45.062466267Z logger=infra.usagestats.collector t=2023-12-17T17:50:45.061990014Z level=debug msg="usage stats collector started" sendInterval=30m0s nextSendInterval=52s
2023-12-17T17:50:45.062470317Z logger=server t=2023-12-17T17:50:45.062041865Z level=debug msg="Starting background service" service=*authimpl.UserAuthTokenService
2023-12-17T17:50:45.062473957Z logger=server t=2023-12-17T17:50:45.062031084Z level=debug msg="Starting background service" service=*remotecache.RemoteCache
2023-12-17T17:50:45.062477587Z logger=ngalert.state.manager t=2023-12-17T17:50:45.062071865Z level=info msg="Warming state cache for startup"
2023-12-17T17:50:45.062481077Z logger=infra.lockservice t=2023-12-17T17:50:45.062395316Z level=debug msg="Start LockAndExecute" actionName="cleanup expired auth tokens"
2023-12-17T17:50:45.062484727Z logger=plugins.update.checker t=2023-12-17T17:50:45.062012494Z level=debug msg="Checking for updates"
2023-12-17T17:50:45.062529897Z logger=cleanup t=2023-12-17T17:50:45.062446747Z level=debug msg="Found old rendered file to delete" folder=/var/lib/grafana/csv deleted=0 kept=0
2023-12-17T17:50:45.069825868Z logger=http.server t=2023-12-17T17:50:45.069739457Z level=info msg="HTTP Server Listen" address=[::]:3000 protocol=http subUrl= socket=
2023-12-17T17:50:45.085706787Z logger=infra.lockservice t=2023-12-17T17:50:45.085630306Z level=debug msg="Start execution" actionName="secret migration task "
2023-12-17T17:50:45.085725277Z logger=secret.migration t=2023-12-17T17:50:45.085647866Z level=debug msg="Starting secret migration service" service=*migrations.DataSourceSecretMigrationService
2023-12-17T17:50:45.086030318Z logger=infra.kvstore.sql t=2023-12-17T17:50:45.085985818Z level=debug msg="got kvstore value" orgId=0 namespace=datasource key=secretMigrationStatus value=compatible
2023-12-17T17:50:45.086040548Z logger=secret.migration t=2023-12-17T17:50:45.086001708Z level=debug msg="secret migration status is compatible"
2023-12-17T17:50:45.086044808Z logger=secret.migration t=2023-12-17T17:50:45.086006608Z level=debug msg="Finished secret migration service" service=*migrations.DataSourceSecretMigrationService
2023-12-17T17:50:45.086048988Z logger=secret.migration t=2023-12-17T17:50:45.086010788Z level=debug msg="Starting secret migration service" service=*migrations.MigrateToPluginService
2023-12-17T17:50:45.086072919Z logger=secret.migration t=2023-12-17T17:50:45.086046058Z level=debug msg="Finished secret migration service" service=*migrations.MigrateToPluginService
2023-12-17T17:50:45.086085079Z logger=infra.lockservice t=2023-12-17T17:50:45.086051898Z level=debug msg="Execution finished" actionName="secret migration task " duration=425.942µs
2023-12-17T17:50:45.088479652Z logger=infra.lockservice t=2023-12-17T17:50:45.088432682Z level=debug msg="Start execution" actionName="alerting migration"
2023-12-17T17:50:45.088488472Z logger=ngalert.migration t=2023-12-17T17:50:45.088452392Z level=info msg=Starting
2023-12-17T17:50:45.088539702Z logger=sqlstore.session t=2023-12-17T17:50:45.088509252Z level=debug msg="reusing existing session" transaction=true
2023-12-17T17:50:45.089007445Z logger=infra.kvstore.sql t=2023-12-17T17:50:45.088967125Z level=debug msg="got kvstore value" orgId=0 namespace=ngalert.migration key=migrated value=true
2023-12-17T17:50:45.089016855Z logger=ngalert.migration t=2023-12-17T17:50:45.088986945Z level=info msg="No migrations to run"
2023-12-17T17:50:45.089067755Z logger=infra.lockservice t=2023-12-17T17:50:45.089038485Z level=debug msg="Execution finished" actionName="alerting migration" duration=608.803µs
2023-12-17T17:50:45.091504219Z logger=infra.lockservice t=2023-12-17T17:50:45.091465129Z level=debug msg="LockExecuteAndRelease finished" actionName="alerting migration" duration=29.164213ms
2023-12-17T17:50:45.091513749Z logger=server t=2023-12-17T17:50:45.091483419Z level=debug msg="Stopped background service" service=*migration.MigrationService reason=null
2023-12-17T17:50:45.096980169Z logger=infra.lockservice t=2023-12-17T17:50:45.096922859Z level=debug msg="LockExecuteAndRelease finished" actionName="secret migration task " duration=34.817074ms
2023-12-17T17:50:45.096993470Z logger=server t=2023-12-17T17:50:45.096941799Z level=debug msg="Stopped background service" service=*migrations.SecretMigrationProviderImpl reason=null
2023-12-17T17:50:45.111387488Z logger=ngalert.state.manager t=2023-12-17T17:50:45.111271277Z level=info msg="State cache has been initialized" states=0 duration=49.198582ms
2023-12-17T17:50:45.111412168Z logger=ngalert.scheduler t=2023-12-17T17:50:45.111304808Z level=info msg="Starting scheduler" tickInterval=10s
2023-12-17T17:50:45.111417048Z logger=ticker t=2023-12-17T17:50:45.111354798Z level=info msg=starting first_tick=2023-12-17T17:50:50Z
2023-12-17T17:50:45.111451318Z logger=ngalert.multiorg.alertmanager t=2023-12-17T17:50:45.111367618Z level=info msg="Starting MultiOrg Alertmanager"
2023-12-17T17:50:45.111552059Z logger=infra.kvstore.sql t=2023-12-17T17:50:45.111497609Z level=debug msg="got kvstore value" orgId=0 namespace=infra.usagestats key=last_sent value=2023-12-16T20:29:56Z
2023-12-17T17:50:45.114439955Z logger=infra.kvstore.sql t=2023-12-17T17:50:45.114362635Z level=debug msg="got kvstore value" orgId=0 namespace=plugin.publickeys key=last_updated value=2023-12-16T22:09:38Z
2023-12-17T17:50:45.114685266Z logger=infra.kvstore.sql t=2023-12-17T17:50:45.114653646Z level=debug msg="got kvstore value" orgId=0 namespace=plugin.publickeys key=last_updated value=2023-12-16T22:09:38Z
2023-12-17T17:50:45.141820758Z logger=grafana.update.checker t=2023-12-17T17:50:45.141751097Z level=info msg="Update check succeeded" duration=80.007664ms
2023-12-17T17:50:45.157887897Z logger=plugins.update.checker t=2023-12-17T17:50:45.157844917Z level=info msg="Update check succeeded" duration=95.848603ms
2023-12-17T17:50:50.002153727Z logger=ngalert.scheduler t=2023-12-17T17:50:50.002032476Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:51:00.002329468Z logger=ngalert.scheduler t=2023-12-17T17:51:00.002155877Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:51:07.797948801Z logger=authn.service t=2023-12-17T17:51:07.79778387Z level=warn msg="Failed to authenticate request" client=auth.client.session error="user token not found"
2023-12-17T17:51:07.798028471Z logger=context userId=0 orgId=0 uname= t=2023-12-17T17:51:07.797941671Z level=info msg="Request Completed" method=GET path=/ status=302 remote_addr=89.89.7.92 time_ms=2 duration=2.888646ms size=29 referer= handler=/
2023-12-17T17:51:07.808359899Z logger=authn.service t=2023-12-17T17:51:07.808217998Z level=warn msg="Failed to authenticate request" client=auth.client.session error="user token not found"
2023-12-17T17:51:07.809259614Z logger=accesscontrol t=2023-12-17T17:51:07.809166784Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811675408Z logger=accesscontrol t=2023-12-17T17:51:07.811592017Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811692588Z logger=accesscontrol t=2023-12-17T17:51:07.811624797Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811700678Z logger=accesscontrol t=2023-12-17T17:51:07.811643347Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811710478Z logger=accesscontrol t=2023-12-17T17:51:07.811664157Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811737548Z logger=accesscontrol t=2023-12-17T17:51:07.811682928Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811746578Z logger=accesscontrol t=2023-12-17T17:51:07.811698818Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811753828Z logger=accesscontrol t=2023-12-17T17:51:07.811710728Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811761608Z logger=accesscontrol t=2023-12-17T17:51:07.811724818Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811777508Z logger=accesscontrol t=2023-12-17T17:51:07.811743118Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811814358Z logger=accesscontrol t=2023-12-17T17:51:07.811774418Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811825028Z logger=accesscontrol t=2023-12-17T17:51:07.811787218Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.811851068Z logger=accesscontrol t=2023-12-17T17:51:07.811798208Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.812575583Z logger=accesscontrol t=2023-12-17T17:51:07.812496952Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.812588533Z logger=accesscontrol t=2023-12-17T17:51:07.812522272Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.812595793Z logger=accesscontrol t=2023-12-17T17:51:07.812539842Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.815253717Z logger=accesscontrol t=2023-12-17T17:51:07.815143067Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.815279348Z logger=accesscontrol t=2023-12-17T17:51:07.815175277Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.815287748Z logger=accesscontrol t=2023-12-17T17:51:07.815207577Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.816447564Z logger=accesscontrol t=2023-12-17T17:51:07.816366084Z level=debug msg="No permissions set for entity" namespace=user id=0 orgID=0 login=
2023-12-17T17:51:07.816469504Z logger=http.server t=2023-12-17T17:51:07.816393014Z level=error msg="Failed to parse user ID" error="identifier is not initialized"
2023-12-17T17:51:07.818620016Z logger=context userId=0 orgId=0 uname= t=2023-12-17T17:51:07.818549986Z level=info msg="OAuth auto login enabled. Redirecting to /login/generic_oauth"
2023-12-17T17:51:07.818687717Z logger=context userId=0 orgId=0 uname= t=2023-12-17T17:51:07.818622746Z level=info msg="Request Completed" method=GET path=/login status=307 remote_addr=89.89.7.92 time_ms=11 duration=11.293763ms size=56 referer= handler=/login
2023-12-17T17:51:07.825694116Z logger=authn.service t=2023-12-17T17:51:07.825560455Z level=warn msg="Failed to authenticate request" client=auth.client.session error="user token not found"
2023-12-17T17:51:07.825846177Z logger=context userId=0 orgId=0 uname= t=2023-12-17T17:51:07.825764076Z level=info msg="Request Completed" method=GET path=/login/generic_oauth status=302 remote_addr=89.89.7.92 time_ms=1 duration=1.145406ms size=318 referer= handler=/login/:name
2023-12-17T17:51:08.428197205Z logger=authn.service t=2023-12-17T17:51:08.428097975Z level=warn msg="Failed to authenticate request" client=auth.client.session error="user token not found"
2023-12-17T17:51:08.513329470Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.513247Z level=debug msg="Getting user info"
2023-12-17T17:51:08.513354240Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.51326531Z level=debug msg="Extracting user info from OAuth token"
2023-12-17T17:51:08.513445941Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.513401631Z level=debug msg="Received id_token" raw_json="{\"iss\":\"https://sso.xxxxxxxxxxx.fr/application/o/grafana/\",\"sub\":\"21db1eaa624155860df625172d98e7bfd76768e28b04de7bac0824a33a9c058c\",\"aud\":\"NQTEUnsPX7HNpPDkFJsKm3dRk0FO8hKpuBDT4jcL\",\"exp\":1705427468,\"iat\":1702835468,\"auth_time\":1701897703,\"acr\":\"goauthentik.io/providers/oauth2/default\",\"at_hash\":\"gw4zac4qOZlCwZWbsqZDBg\"}" data="Name: , Displayname: , Login: , Username: , Email: , Upn: , Attributes: map[]"
2023-12-17T17:51:08.513459331Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.513414511Z level=debug msg="Getting user info from API"
2023-12-17T17:51:08.544902416Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.544747136Z level=debug msg="HTTP GET" url=https://sso.xxxxxxxxxxx.fr/application/o/userinfo/ status="200 OK" response_body="{\"email\": \"register@xxxxxxxxxxx.fr\", \"email_verified\": true, \"name\": \"Arthur\", \"given_name\": \"Arthur\", \"preferred_username\": \"arthur\", \"nickname\": \"arthur\", \"groups\": [\"download access\", \"GrafanaAdmins\"], \"sub\": \"21db1eaa624155860df625172d98e7bfd76768e28b04de7bac0824a33a9c058c\"}"
2023-12-17T17:51:08.544937947Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.544809856Z level=debug msg="Received user info response from API" raw_json="{\"email\": \"register@xxxxxxxxxxx.fr\", \"email_verified\": true, \"name\": \"Arthur\", \"given_name\": \"Arthur\", \"preferred_username\": \"arthur\", \"nickname\": \"arthur\", \"groups\": [\"download access\", \"GrafanaAdmins\"], \"sub\": \"21db1eaa624155860df625172d98e7bfd76768e28b04de7bac0824a33a9c058c\"}" data="Name: Arthur, Displayname: , Login: , Username: , Email: register@xxxxxxxxxxx.fr, Upn: , Attributes: map[]"
2023-12-17T17:51:08.544945027Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.544821336Z level=debug msg="Processing external user info" source=token data="Name: , Displayname: , Login: , Username: , Email: , Upn: , Attributes: map[]"
2023-12-17T17:51:08.544949527Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.544833886Z level=debug msg="Unable to find user info name"
2023-12-17T17:51:08.544953337Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.544838946Z level=debug msg="Searching for login among JSON" loginAttributePath=preferred_username
2023-12-17T17:51:08.545014367Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.544973997Z level=debug msg="Processing external user info" source=API data="Name: Arthur, Displayname: , Login: , Username: , Email: register@xxxxxxxxxxx.fr, Upn: , Attributes: map[]"
2023-12-17T17:51:08.545033837Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.544985587Z level=debug msg="Setting user info name from name field"
2023-12-17T17:51:08.545038607Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.544989967Z level=debug msg="Searching for login among JSON" loginAttributePath=preferred_username
2023-12-17T17:51:08.545046807Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.545012447Z level=debug msg="Set user info email from extracted email" email=register@xxxxxxxxxxx.fr
2023-12-17T17:51:08.545051457Z logger=oauth.generic_oauth t=2023-12-17T17:51:08.545023007Z level=debug msg="User info result" result="Id: 21db1eaa624155860df625172d98e7bfd76768e28b04de7bac0824a33a9c058c, Name: Arthur, Email: register@xxxxxxxxxxx.fr, Login: arthur, Role: Viewer, Groups: []"
2023-12-17T17:51:08.559364777Z logger=user.sync t=2023-12-17T17:51:08.559281687Z level=debug msg="Updating auth connection for user" id=
2023-12-17T17:51:08.582943118Z logger=login.authinfo.store t=2023-12-17T17:51:08.582842857Z level=debug msg="Updated user_auth" user_id=2 auth_id=21db1eaa624155860df625172d98e7bfd76768e28b04de7bac0824a33a9c058c auth_module=oauth_generic_oauth rows=1
2023-12-17T17:51:08.586016134Z logger=org.sync t=2023-12-17T17:51:08.585905203Z level=debug msg="Syncing organization roles" id=user:2 extOrgRoles=map[1:Viewer]
2023-12-17T17:51:08.589105491Z logger=accesscontrol.service t=2023-12-17T17:51:08.589016161Z level=debug msg="Fetch permissions from store" key=rbac-permissions-1-user-2
2023-12-17T17:51:08.590797461Z logger=accesscontrol.service t=2023-12-17T17:51:08.59073633Z level=debug msg="Cache permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:08.594537542Z logger=auth t=2023-12-17T17:51:08.594436491Z level=debug msg="User auth token created" tokenId=25 userId=2 clientIP=89.89.7.92 userAgent="Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0" authToken=b107339abc34373cf07919d61b59cb4aedb4895f901cffeeb8f0d4a44e75ef2c
2023-12-17T17:51:08.594590432Z logger=context userId=0 orgId=0 uname= t=2023-12-17T17:51:08.594555062Z level=info msg="Request Completed" method=GET path=/login/generic_oauth status=302 remote_addr=89.89.7.92 time_ms=167 duration=167.01919ms size=24 referer= handler=/login/:name
2023-12-17T17:51:08.607311113Z logger=auth t=2023-12-17T17:51:08.607203852Z level=debug msg="Seen token" tokenId=25 userId=2 clientIP=89.89.7.92 userAgent="Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0" authToken=b107339abc34373cf07919d61b59cb4aedb4895f901cffeeb8f0d4a44e75ef2c
2023-12-17T17:51:08.608748961Z logger=accesscontrol.service t=2023-12-17T17:51:08.6086408Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:08.631288207Z logger=accesscontrol.service t=2023-12-17T17:51:08.631187666Z level=debug msg="Fetch permissions from store" key=rbac-permissions-0-user-2
2023-12-17T17:51:08.632686454Z logger=accesscontrol.service t=2023-12-17T17:51:08.632594774Z level=debug msg="Cache permissions" key=rbac-permissions-0-user-2
2023-12-17T17:51:08.632706614Z logger=accesscontrol t=2023-12-17T17:51:08.632619574Z level=debug msg="No permissions set for entity" namespace=user id=2 orgID=0 login=arthur
2023-12-17T17:51:08.643735946Z logger=accesscontrol.service t=2023-12-17T17:51:08.643642375Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:09.129633113Z logger=accesscontrol.service t=2023-12-17T17:51:09.129507992Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:09.130801819Z logger=context userId=2 orgId=1 uname=arthur t=2023-12-17T17:51:09.130676929Z level=info msg="Request Completed" method=GET path=/api/live/ws status=-1 remote_addr=89.89.7.92 time_ms=3 duration=3.959862ms size=0 referer= handler=/api/live/ws
2023-12-17T17:51:09.135705117Z logger=live t=2023-12-17T17:51:09.135592336Z level=debug msg="Client connected" user=2 client=282d5d36-765f-4cda-9a93-f6305deb5423
2023-12-17T17:51:09.264038993Z logger=accesscontrol.service t=2023-12-17T17:51:09.263890132Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:09.305015721Z logger=accesscontrol.service t=2023-12-17T17:51:09.304862801Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:09.305884126Z logger=avatar t=2023-12-17T17:51:09.305771426Z level=debug msg="avatar.fetch(fetch new avatar)" url=https://secure.gravatar.com/avatar/a387edc9b27fc6c2b2bc49df2d7ca1e1?
2023-12-17T17:51:09.305909406Z logger=avatar t=2023-12-17T17:51:09.305833626Z level=debug msg="Fetching avatar url with parameters" url="https://secure.gravatar.com/avatar/a387edc9b27fc6c2b2bc49df2d7ca1e1?d=retro&r=pg&size=200"
2023-12-17T17:51:09.345214176Z logger=accesscontrol.service t=2023-12-17T17:51:09.345049135Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:09.349750561Z logger=accesscontrol.service t=2023-12-17T17:51:09.34777904Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:09.349797051Z logger=avatar t=2023-12-17T17:51:09.348092452Z level=debug msg="avatar.fetch(fetch new avatar)" url=https://secure.gravatar.com/avatar/a387edc9b27fc6c2b2bc49df2d7ca1e1?
2023-12-17T17:51:09.349811961Z logger=avatar t=2023-12-17T17:51:09.348160422Z level=debug msg="Fetching avatar url with parameters" url="https://secure.gravatar.com/avatar/a387edc9b27fc6c2b2bc49df2d7ca1e1?d=retro&r=pg&size=200"
2023-12-17T17:51:09.349826101Z logger=accesscontrol.service t=2023-12-17T17:51:09.348815076Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:09.351147669Z logger=avatar t=2023-12-17T17:51:09.350925757Z level=debug msg="Fetching avatar url with parameters" url="https://secure.gravatar.com/avatar/a387edc9b27fc6c2b2bc49df2d7ca1e1?d=404"
2023-12-17T17:51:09.351193269Z logger=accesscontrol.service t=2023-12-17T17:51:09.350973868Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:09.354873110Z logger=avatar t=2023-12-17T17:51:09.354683968Z level=debug msg="Fetching avatar url with parameters" url="https://secure.gravatar.com/avatar/a387edc9b27fc6c2b2bc49df2d7ca1e1?d=404"
2023-12-17T17:51:09.361474736Z logger=avatar t=2023-12-17T17:51:09.361286435Z level=debug msg="add avatar to cache" err="Item a387edc9b27fc6c2b2bc49df2d7ca1e1 already exists"
2023-12-17T17:51:09.376644351Z logger=accesscontrol.service t=2023-12-17T17:51:09.37655163Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:09.380241761Z logger=accesscontrol.service t=2023-12-17T17:51:09.38012436Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:09.386294575Z logger=accesscontrol.service t=2023-12-17T17:51:09.386227614Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:10.002028250Z logger=ngalert.scheduler t=2023-12-17T17:51:10.001875419Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:51:12.920837147Z logger=accesscontrol.service t=2023-12-17T17:51:12.920717886Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:12.953636160Z logger=accesscontrol.service t=2023-12-17T17:51:12.953427878Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:12.953682250Z logger=accesscontrol.service t=2023-12-17T17:51:12.953482259Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:12.973451780Z logger=accesscontrol.service t=2023-12-17T17:51:12.97332649Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:12.995083571Z logger=accesscontrol.service t=2023-12-17T17:51:12.99491649Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:12.995132191Z logger=accesscontrol.service t=2023-12-17T17:51:12.9949786Z level=debug msg="Using cached permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:19.428587244Z logger=accesscontrol.service t=2023-12-17T17:51:19.428448643Z level=debug msg="Fetch permissions from store" key=rbac-permissions-1-user-2
2023-12-17T17:51:19.431447030Z logger=accesscontrol.service t=2023-12-17T17:51:19.431350869Z level=debug msg="Cache permissions" key=rbac-permissions-1-user-2
2023-12-17T17:51:19.431682011Z logger=context userId=2 orgId=1 uname=arthur t=2023-12-17T17:51:19.431611571Z level=debug msg="Received unknown frontend metric" metric=frontend_app_init_ms
2023-12-17T17:51:20.001696491Z logger=ngalert.scheduler t=2023-12-17T17:51:20.00155178Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:51:30.001693140Z logger=ngalert.scheduler t=2023-12-17T17:51:30.001559139Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:51:37.073333002Z logger=infra.usagestats t=2023-12-17T17:51:37.073194942Z level=info msg="Usage stats are ready to report"
2023-12-17T17:51:40.001472770Z logger=ngalert.scheduler t=2023-12-17T17:51:40.001334229Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:51:45.062535883Z logger=secrets t=2023-12-17T17:51:45.062361512Z level=debug msg="Removing expired data keys from cache..."
2023-12-17T17:51:45.062575143Z logger=secrets t=2023-12-17T17:51:45.062415852Z level=debug msg="Removing expired data keys from cache finished successfully"
2023-12-17T17:51:45.111611027Z logger=ngalert.multiorg.alertmanager t=2023-12-17T17:51:45.111470216Z level=debug msg="Synchronizing Alertmanagers for orgs"
2023-12-17T17:51:45.112030259Z logger=ngalert.sender.router t=2023-12-17T17:51:45.111941709Z level=debug msg="Attempting to sync admin configs" count=0
2023-12-17T17:51:45.112060039Z logger=ngalert.sender.router t=2023-12-17T17:51:45.111974009Z level=debug msg="Finish of admin configuration sync"
2023-12-17T17:51:45.112914944Z logger=ngalert.notifier.alertmanager 1=(MISSING) t=2023-12-17T17:51:45.112841914Z level=debug msg="Neither config nor template have changed, skipping configuration sync."
2023-12-17T17:51:45.114549923Z logger=ngalert.multiorg.alertmanager t=2023-12-17T17:51:45.114465233Z level=debug msg="Done synchronizing Alertmanagers for orgs"
2023-12-17T17:51:50.001639532Z logger=ngalert.scheduler t=2023-12-17T17:51:50.001494111Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:52:00.003115662Z logger=ngalert.scheduler t=2023-12-17T17:52:00.002978941Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:52:10.002180803Z logger=ngalert.scheduler t=2023-12-17T17:52:10.002047302Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:52:20.002335311Z logger=ngalert.scheduler t=2023-12-17T17:52:20.002192631Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:52:30.002195157Z logger=ngalert.scheduler t=2023-12-17T17:52:30.002058396Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:52:40.002121904Z logger=ngalert.scheduler t=2023-12-17T17:52:40.001992984Z level=debug msg="Alert rules fetched" rulesCount=0 foldersCount=0 updatedRules=0
2023-12-17T17:52:45.062559425Z logger=secrets t=2023-12-17T17:52:45.062420624Z level=debug msg="Removing expired data keys from cache..."
2023-12-17T17:52:45.062604445Z logger=secrets t=2023-12-17T17:52:45.062461134Z level=debug msg="Removing expired data keys from cache finished successfully"
2023-12-17T17:52:45.113266761Z logger=ngalert.sender.router t=2023-12-17T17:52:45.11311644Z level=debug msg="Attempting to sync admin configs" count=0
2023-12-17T17:52:45.113305731Z logger=ngalert.sender.router t=2023-12-17T17:52:45.113154871Z level=debug msg="Finish of admin configuration sync"
2023-12-17T17:52:45.114813070Z logger=ngalert.multiorg.alertmanager t=2023-12-17T17:52:45.114728269Z level=debug msg="Synchronizing Alertmanagers for orgs"
2023-12-17T17:52:45.115978116Z logger=ngalert.notifier.alertmanager 1=(MISSING) t=2023-12-17T17:52:45.115904726Z level=debug msg="Neither config nor template have changed, skipping configuration sync."
2023-12-17T17:52:45.117636056Z logger=ngalert.multiorg.alertmanager t=2023-12-17T17:52:45.117567965Z level=debug msg="Done synchronizing Alertmanagers for orgs"

That’s from 10.2.2, did you test 10.1.5?

Just tried, same result

2023-12-17T21:41:05.950022120Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.949927289Z level=debug msg="Getting user info"

2023-12-17T21:41:05.950046170Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.949960759Z level=debug msg="Extracting user info from OAuth token"

2023-12-17T21:41:05.950224950Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.95015992Z level=debug msg="Received id_token" raw_json="{\"iss\":\"https://xxxxx.xxxxxxxx.fr/application/o/grafana/\",\"sub\":\"21db1eaa624155860df625172d98e7bfd76768e28b04de7bac0824a33a9c058c\",\"aud\":\"NQTEUnsPX7HNpPDkFJsKm3dRk0FO8hKpuBDT4jcL\",\"exp\":1705441265,\"iat\":1702849265,\"auth_time\":1701897703,\"acr\":\"goauthentik.io/providers/oauth2/default\",\"at_hash\":\"yOLliwxNgKEIz67pPHMrXw\"}" data="Name: , Displayname: , Login: , Username: , Email: , Upn: , Attributes: map[]"

2023-12-17T21:41:05.950233490Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.95018544Z level=debug msg="Getting user info from API"

2023-12-17T21:41:05.987979628Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.987907117Z level=debug msg="HTTP GET" url=https://xxxxx.xxxxxxxxxxx.fr/application/o/userinfo/ status="200 OK" response_body="{\"email\": \"register@xxxxxxxxxxx.fr\", \"email_verified\": true, \"name\": \"Arthur\", \"given_name\": \"Arthur\", \"preferred_username\": \"arthur\", \"nickname\": \"arthur\", \"groups\": [\"download access\", \"GrafanaAdmins\"], \"sub\": \"21db1eaa624155860df625172d98e7bfd76768e28b04de7bac0824a33a9c058c\"}"

2023-12-17T21:41:05.987998298Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.987945408Z level=debug msg="Received user info response from API" raw_json="{\"email\": \"register@xxxxxxxxxx.fr\", \"email_verified\": true, \"name\": \"Arthur\", \"given_name\": \"Arthur\", \"preferred_username\": \"arthur\", \"nickname\": \"arthur\", \"groups\": [\"download access\", \"GrafanaAdmins\"], \"sub\": \"21db1eaa624155860df625172d98e7bfd76768e28b04de7bac0824a33a9c058c\"}" data="Name: Arthur, Displayname: , Login: , Username: , Email: register@xxxxxxxx.fr, Upn: , Attributes: map[]"

2023-12-17T21:41:05.988017018Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.987955818Z level=debug msg="Processing external user info" source=token data="Name: , Displayname: , Login: , Username: , Email: , Upn: , Attributes: map[]"

2023-12-17T21:41:05.988021898Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.987965918Z level=debug msg="Unable to find user info name"

2023-12-17T21:41:05.988028518Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.987972078Z level=debug msg="Searching for login among JSON" loginAttributePath=preferred_username

2023-12-17T21:41:05.988143988Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.988093388Z level=debug msg="Processing external user info" source=API data="Name: Arthur, Displayname: , Login: , Username: , Email: register@xxxxxxxxxx.fr, Upn: , Attributes: map[]"

2023-12-17T21:41:05.988168408Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.988102828Z level=debug msg="Setting user info name from name field"

2023-12-17T21:41:05.988176908Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.988105988Z level=debug msg="Searching for login among JSON" loginAttributePath=preferred_username

2023-12-17T21:41:05.988186728Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.988125738Z level=debug msg="Set user info email from extracted email" email=register@xxxxxxxxxxx.fr

2023-12-17T21:41:05.988194128Z logger=oauth.generic_oauth t=2023-12-17T21:41:05.988132068Z level=debug msg="User info result" result="Id: 21db1eaa624155860df625172d98e7bfd76768e28b04de7bac0824a33a9c058c, Name: Arthur, Email: register@xxxxxxxxxxxxxx.fr, Login: arthur, Role: Viewer, Groups: []"

2023-12-17T21:41:06.010080918Z logger=user.sync t=2023-12-17T21:41:06.009973448Z level=debug msg="Updating auth connection for user" id=

2023-12-17T21:41:06.061493146Z logger=login.authinfo.store t=2023-12-17T21:41:06.061388785Z level=debug msg="Updated user_auth" user_id=2 auth_id=21db1eaa624155860df625172d98e7bfd76768e28b04de7bac0824a33a9c058c auth_module=oauth_generic_oauth rows=1

2023-12-17T21:41:06.064044675Z logger=org.sync t=2023-12-17T21:41:06.063921515Z level=debug msg="Syncing organization roles" id=user:2 extOrgRoles=map[1:Viewer]

2023-12-17T21:41:06.066862526Z logger=accesscontrol.service t=2023-12-17T21:41:06.066757285Z level=debug msg="using cached permissions" key=rbac-permissions-1-user-2

I don’t know. Try another IDP, e. g. Keycloak Configure Keycloak OAuth2 authentication | Grafana documentation
Start with minimal working example and then add more configs from your setup until you find config option, which creates a problem.

I use 10.1.5 with Generic OAuth configured against Azure AD with role mapping without any issue.

Hi there
I run across the same issue
This worked for my setup
role_attribute_path = groups[?contains(@, 'Admin') == true] && 'Admin' || groups[?contains(@, 'Editor') == true] && 'Editor' || groups[?contains(@, 'Viewer') == true] && 'Viewer'
And I also included groups into GF_AUTH_GENERIC_OAUTH_SCOPES=openid profile email groups