mirror/Part-DB.Part-DB-server
1
0
Fork 1
mirror of https://github.com/Part-DB/Part-DB-server.git synced 2025-06-20 17:15:51 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

Allow to automatically assign SAML users to a group based on SAML attributes

Browse source
This commit is contained in:
Jan Böhmer 2023-02-27 23:47:42 +01:00
parent 6a06a24296
commit 5e85c52a57
6 changed files with 151 additions and 11 deletions
Download patch file Download diff file Expand all files Collapse all files

8
.env
View file

@ -79,6 +79,14 @@ ERROR_PAGE_SHOW_HELP=1
# Set this to 1 to enable SAML single sign on
SAML_ENABLED=0
# A JSON encoded array of role mappings in the form { "saml_role": PARTDB_GROUP_ID, "*": PARTDB_GROUP_ID }
SAML_ROLE_MAPPING="{}"
# A mapping could look like the following
#SAML_ROLE_MAPPING='{ "*": 2, "editor": 3, "admin": 1 }'
# When this is set to 1, the group of SAML users will be updated everytime they login based on their SAML roles
SAML_UPDATE_GROUP_ON_LOGIN=1
# The entity ID of your SAML IDP (e.g. the realm name of your Keycloak server)
SAML_IDP_ENTITY_ID="https://idp.changeme.invalid/realms/master"
# The URL of your SAML IDP SingleSignOnService (e.g. the endpoint of your Keycloak server)