Currently, the hooks CREATE_USER and BEFORE_LOGIN are passed the user_identity from SAML.
They should also be passed a the matching target_user — it is available at that point. That would help implement features like checking for specific flags on User to authorize SAML login or saving information related to user when created or logged in.
Currently, the hooks
CREATE_USERandBEFORE_LOGINare passed theuser_identityfrom SAML.They should also be passed a the matching
target_user— it is available at that point. That would help implement features like checking for specific flags onUserto authorize SAML login or saving information related touserwhen created or logged in.