search

ManageIQ / manageiq

ManageIQ Open-Source Management Platform
https://manageiq.org
Apache License 2.0
1.34k stars 897 forks source link

[Auth] Auto-create Groups from External Auth #20014

Open chessbyte opened 4 years ago

chessbyte commented 4 years ago

UI should probably have 2 choices for this work:

[ ] Create ManageIQ Groups mapping to External Auth groups if above is checked, Default Auto-Created Groups to Roles: [Choose 🔽 ]

Fryguy commented 4 years ago

The idea is that we would pull in groups (yeah there might be a lot, but maybe that's ok), and the MIQ admin can set up default permissions for new groups. Then, if specific groups need alternate permissions the MIQ admin can go into CF and change those specific groups' permissions.

Separately, and I'm not sure if it's possible, but if the ext auth system has metadata associated with a group that we are given, then perhaps we can auto-map the role from some attribute on the group. This would require some investigation.

miq-bot commented 1 year ago

This issue has been automatically marked as stale because it has not been updated for at least 3 months.

If you can still reproduce this issue on the current release or on master, please reply with all of the information you have about it in order to keep the issue open.

Thank you for all your contributions! More information about the ManageIQ triage process can be found in the triage process documentation.