From 7503b7a1da3b9e2200552510223bb122245dfc0a Mon Sep 17 00:00:00 2001 From: evelinadanielsson Date: Tue, 14 Oct 2025 11:23:10 +0200 Subject: [PATCH 1/2] docs: allow OIDC credential forwarding configuration --- .../configuration/configuration-settings.adoc | 14 ++++++++++++++ 1 file changed, 14 insertions(+) diff --git a/modules/ROOT/pages/configuration/configuration-settings.adoc b/modules/ROOT/pages/configuration/configuration-settings.adoc index e02670b35..acda070d7 100644 --- a/modules/ROOT/pages/configuration/configuration-settings.adoc +++ b/modules/ROOT/pages/configuration/configuration-settings.adoc @@ -4716,6 +4716,20 @@ a|A boolean. m|+++false+++ |=== +[role=label--enterprise-edition label--new-2025.10] +[[config_dbms.security.allow_oidc_credential_forwarding_enabled]] +=== `dbms.security.allow_oidc_credential_forwarding_enabled` + +.dbms.security.allow_oidc_credential_forwarding_enabled +[frame="topbot", stripes=odd, grid="cols", cols="<1s,<4"] +|=== +|Description +a|When set to `true`, remote database aliases are allowed to authenticate to remote databases using OIDC credential forwarding. When set to `false`, authentication of remote database aliases using OIDC credential forwarding is disallowed. Existing aliases that rely on this method remain defined but cannot be used to connect until this setting is enabled. +|Valid values +a|A boolean. +|Default value +m|+++false+++ +|===c [[config_dbms.netty.ssl.provider]] === `dbms.netty.ssl.provider` From 7a2945e854298e6b8fe57de4570690160193c83a Mon Sep 17 00:00:00 2001 From: evelinadanielsson Date: Tue, 21 Oct 2025 12:54:35 +0200 Subject: [PATCH 2/2] updated to alternative description --- modules/ROOT/pages/configuration/configuration-settings.adoc | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/modules/ROOT/pages/configuration/configuration-settings.adoc b/modules/ROOT/pages/configuration/configuration-settings.adoc index acda070d7..eadd1e3ad 100644 --- a/modules/ROOT/pages/configuration/configuration-settings.adoc +++ b/modules/ROOT/pages/configuration/configuration-settings.adoc @@ -4724,12 +4724,12 @@ m|+++false+++ [frame="topbot", stripes=odd, grid="cols", cols="<1s,<4"] |=== |Description -a|When set to `true`, remote database aliases are allowed to authenticate to remote databases using OIDC credential forwarding. When set to `false`, authentication of remote database aliases using OIDC credential forwarding is disallowed. Existing aliases that rely on this method remain defined but cannot be used to connect until this setting is enabled. +a|When set to `true`, remote database aliases are allowed to forward OIDC credentials to authenticate on remote Neo4j DBMS. When set to `false`, OIDC credentials are not allowed to be forwarded to remote DBMS. Existing aliases that rely on this method remain defined but cannot be used to connect until this setting is enabled. |Valid values a|A boolean. |Default value m|+++false+++ -|===c +|=== [[config_dbms.netty.ssl.provider]] === `dbms.netty.ssl.provider`