Comments (8)
casbin-bot
commented on July 20, 2024
@tangyang9464 @JalinWang @imp2002
from casdoor.
hsluoyz
commented on July 20, 2024
@lajoll1 can you provide more details? Like what SAML field should be provided? In what format? It's better to not require us to setup a Nextcloud instance by ourselves
from casdoor.
lajoll1
commented on July 20, 2024
Ok, i'll try giving some more details.
So, on the nextcloud side, you've got these parameters.
If on casdoor's side, I add a custom fixed string attribute (let's say named "Group", with value Group1)
and set in nextcloud's field the attribute Group in the appropriate field, as in the following screenshot:
All the users who login will get the attribute Group1 and therefore the appropriate permissions. Example below for Alice.
I would like to transmit all the groups to which the user belongs to in casdoor in nextcloud through SAML attribute.
For instance if under casdoor i've got two users, Alice. Alice belongs to groups group1 and group2. When Alice signs in, nextcloud, in addition to mail/email..., should receive groups group1 and group2.
Regarding the data format, could not find accurate data on the doc of the SSO module for nextcloud. But from what I read so far, I feel like the following format is expected
<Attribute Name="Group">
<AttributeValue>Group1</AttributeValue>
<AttributeValue>Group2</AttributeValue>
</Attribute>
Does that answer your question ?
from casdoor.
hsluoyz
commented on July 20, 2024
@lajoll1 what about using the similar format like Roles? Can you check if the format is OK? If OK, we will add Groups similarly.
Lines 113 to 123 in c532a5d
from casdoor.
lajoll1
commented on July 20, 2024
Indeed! Feel like it might work.
Created a fake role.
I can't see the "Roles" attribute in the SAML metadata in the created application.
How can I test it ?
Thanks for your help
from casdoor.
hsluoyz
commented on July 20, 2024
@lajoll1 debug it, make sure getPermissionsAndRolesByUser() returns non-empty roles
from casdoor.
lajoll1
commented on July 20, 2024
Sorry my question might look stupid but i'm not a dev and never worked with Go.
How am I supposed to call the function in that case ?
from casdoor.
hsluoyz
commented on July 20, 2024
Already has this feature
from casdoor.
Related Issues (20)
- [Bug] Auto-login causing AuthCodeWithPKCE Failures HOT 1
- webhook for signup via social login doesn't fire, signup through login ui will fire webhook HOT 3
- support self-host gitea login casdoor HOT 2
- How to perform database migration after Casdoor update? HOT 2
- GET /api/user no match 403 HOT 3
- Payment providers from other organizations not showing up in the list HOT 2
- User passwords visible in Logging & Auditing Records on UI HOT 1
- Cannot edit `app-built-in` default application through `init_data.json' HOT 2
- Question: Token is not valid yet HOT 7
- Cannot delete `buil-in` org and `build-in` application when edit config in `init_data.json` HOT 2
- Cannot delete sessionId in DB when recreate `casdoor` HOT 12
- How to verify whether the access token is expired or invalid? HOT 4
- [feature] support checking whether send-webhook API has error HOT 1
- After the /api/logout interface is invoked, casdoor is still logged in HOT 2
- Bug in sync database HOT 5
- StaticFilter doesn't 404 properly HOT 4
- face authentication without typing in the username HOT 5
- WeCom Login URL Need update HOT 1
- Login field is case sensitive and untrimmed HOT 2
- Where is the definition of "POST /api/enforce"? HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from casdoor.