Closed hc4 closed 7 years ago
Do you mean just having a header that contains the email address and then using that as the user name?
I want sso to authorize user by email, i.e. find it by email in db.
@hc4 Please describe the workflow in a little more detail.
Which component exactly would lookup the email address of the user in some database?
I want to pass only user email to sso plugin, and it should find this user by email and authorize. Here in code user looked up by name, but my idea to make also logic to lookup user by email only.
In other words I want to pass only user email with header to SsoAuthRealm and it should correctly find this user and authorize.
@hc4 What would happen if multiple users have the same email address in Graylog's user database? Currently they don't need to be unique.
hm. this is problem. I thought users can't have same email :) But anyway - if there is multiple users with same email - SsoAuth may log error about ambiguouty and don't authorize user
we will not implement this.
if you like to have such edge case, please build your own auth plugin.
Make possible to authenticate by email only