Make sso source of truth for roles and groups
(MGNLSSO-179)
|
|
| Status: | Accepted |
| Project: | Single Sign On |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Documentation Task | Priority: | Neutral |
| Reporter: | Evzen Fochr | Assignee: | Julie Legendre |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | stays-in-jira-server | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||||||||||
| Template: |
|
||||||||||||||||
| Date of First Response: | |||||||||||||||||
| Team: | |||||||||||||||||
| Description |
|
As we are removing crosscheck between sso configuration of authorizationGenerators and roles and groups defined in magnolia we are removing nested groups/roles defined in magnolia/jcr for SsoUser at same time. Only roles and groups assigned to such user are configured in sso configuration file. This file with mapping and sso provider (e.g. okta) are one and only source of then now. |
| Comments |
| Comment by Evzen Fochr [ 19/Jan/23 ] |
|
https://jira.magnolia-cms.com/browse/MGNLSSO-173 was reverted |
| Comment by Evzen Fochr [ 25/Jan/23 ] |
|
amansell we didnt have time to reimplement our change, so not yet. Removing version from title |