kroepke
commented
8 years ago Do you mean just having a header that contains the email address and then using that as the user name?
Closed hc4 closed 7 years ago
kroepke
commented
8 years ago Do you mean just having a header that contains the email address and then using that as the user name?
hc4
commented
8 years ago I want sso to authorize user by email, i.e. find it by email in db.
joschi
commented
8 years ago @hc4 Please describe the workflow in a little more detail.
Which component exactly would lookup the email address of the user in some database?
hc4
commented
8 years ago I want to pass only user email to sso plugin, and it should find this user by email and authorize. Here in code user looked up by name, but my idea to make also logic to lookup user by email only.
hc4
commented
8 years ago In other words I want to pass only user email with header to SsoAuthRealm and it should correctly find this user and authorize.
joschi
commented
8 years ago @hc4 What would happen if multiple users have the same email address in Graylog's user database? Currently they don't need to be unique.
hc4
commented
8 years ago hm. this is problem. I thought users can't have same email :) But anyway - if there is multiple users with same email - SsoAuth may log error about ambiguouty and don't authorize user
jalogisch
commented
7 years ago we will not implement this.
if you like to have such edge case, please build your own auth plugin.
Make possible to authenticate by email only