netbirdio
How to remove groups that issued by JWT ?
Describe the problem
using v0.46.0 docker image, default sqlite why enable JWT group sync features. specific group will be created. however I can't remove the group and it shows "This group is issued by JWT and cannot be deleted.
To Reproduce
Steps to reproduce the behavior:
- Disable "JWT group sync"
- Remove all peers "assigned groups", remove Access Control --> Policies contain that group
- Remove Users contains that group
- Group --> delete (grey in color) , shows "This group is issued by JWT and cannot be deleted."
- even restart all containers, no lunck
Expected behavior
there should be a way to remove groups that no longer be used.
Are you using NetBird Cloud?
self-host NetBird's control plane.
NetBird version 0.46.0
Debug output
+1
Also, removing a single user from a JWT group has no effect, after saving the changes on a user, refresh the UI and the group is back.
What should happen if a user logs in and no longer has some JWT groups they previously had the last time they logged in? I think it should remove the groups from them, but it doesn't, and worse you can't manually remove them from those old groups either due to the above.
Bump. Same issue here. I am using Authentik as my IdP and all the groups from Authentik populated in Netbird. I am still learning Authentik, so I should be filtering before I send, but it's too late now as there is no way (I can find) to clean up my mess already made.
+1 from here as well. Not being able to delete JWT groups after disabling JWT sync is definitely not ideal.
Same problem here, as well as orphaned groups after renaming a group in the idP. It only refers to the groups via the name but not with any unique group id, or is there a setting which would do that?
FYI: this is purely a frontend restriction that will be addressed soon in https://github.com/netbirdio/dashboard/pull/487
