Rename the setting and add description

3aa24b3a · Tomas Dabasinskas · 08c12313 · 3aa24b3a · 3aa24b3a · 3aa24b3a
Commit 3aa24b3a authored Dec 19, 2018 by Tomas Dabasinskas
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 3 deletions

conf/defaults.ini
+1 -1

conf/sample.ini
+4 -1

pkg/social/social.go
+1 -1

No files found.
--- a/conf/defaults.ini
+++ b/conf/defaults.ini
@@ -335,7 +335,7 @@ tls_skip_verify_insecure = false
 tls_client_cert =
 tls_client_key =
 tls_client_ca =
-broken_auth_header_provider = false
+send_client_credentials_via_post = false
 #################################### Basic Auth ##########################
 [auth.basic]

--- a/conf/sample.ini
+++ b/conf/sample.ini
@@ -283,7 +283,10 @@ log_queries =
 ;tls_client_cert =
 ;tls_client_key =
 ;tls_client_ca =
-;broken_auth_header_provider = false
+; Set to true to enable sending client_id and client_secret via POST body instead of Basic authentication HTTP header
+; This might be required if the OAuth provider is not RFC6749 compliant, only supporting credentials passed via POST payload
+;send_client_credentials_via_post = false
 #################################### Grafana.com Auth ####################
 [auth.grafana_com]

--- a/pkg/social/social.go
+++ b/pkg/social/social.go
@@ -79,7 +79,7 @@ func NewOAuthService() {
 			TlsClientKey:             sec.Key("tls_client_key").String(),
 			TlsClientCa:              sec.Key("tls_client_ca").String(),
 			TlsSkipVerify:            sec.Key("tls_skip_verify_insecure").MustBool(),
-			BrokenAuthHeaderProvider: sec.Key("broken_auth_header_provider").MustBool(),
+			BrokenAuthHeaderProvider: sec.Key("send_client_credentials_via_post").MustBool(),
 		}
 		if !info.Enabled {