View Issue Details

IDProjectCategoryView StatusLast Update
0001150savapage-server[All Projects] Generalpublic2020-11-16 20:01
ReporterrijkrAssigned Torijkr 
PrioritynormalSeverityminorReproducibilitysometimes
Status resolvedResolutionfixed 
Product Version1.3.0 
Target Version1.3.0Fixed in Version1.3.0 
Summary0001150: Support OAuth ad-hoc user creation
DescriptionIST: Keycloak OAuth login fails if during the OAuth process user is ad-hoc created by Keycloak in the same OpenLDAP that is configured in SavaPage as external user source.

SOLL-1: Add OAuthClientPlugin method "boolean isUserSource()" to tell if the OAuth provided User ID is part of the same external user source as configured in SavaPage.

The return value of this method is used to decide if an enabled "On demand user creation" "At first login" must be applied in the OAuth case. If so, if a user is not present in SavaPage after a successful OAuth login, the user is ad-hoc created in anticipation of the next user sync.

SOLL-2: Add "keycloak.savapage.usersource" key to savapage-ext-oauth-keycloak.properties.template to tell if keycloak uses same user source as SavaPage. Value: true | false (default).
TagsNo tags attached.

Relationships

related to 0001146 resolvedrijkr savapage-ext-oauth Add Keycloak OAuth plugin 

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2020-11-16 14:45 rijkr New Issue
2020-11-16 14:45 rijkr Status new => assigned
2020-11-16 14:45 rijkr Assigned To => rijkr
2020-11-16 16:56 rijkr Relationship added related to 0001146
2020-11-16 20:01 rijkr Status assigned => resolved
2020-11-16 20:01 rijkr Resolution open => fixed
2020-11-16 20:01 rijkr Fixed in Version => 1.3.0