search

nextcloud / user_saml

:lock: App for authenticating Nextcloud users using SAML https://apps.nextcloud.com/apps/user_saml
https://portal.nextcloud.com/article/configuring-single-sign-on-10.html
GNU Affero General Public License v3.0
96 stars 76 forks source link

Delete no longer existing users in nextcloud #832

Closed arno4000 closed 7 months ago

arno4000 commented 7 months ago

Steps to reproduce

  1. Login with a user via SSO
  2. Delete the user in the SSO backend
  3. Have an orphaned user in nextcloud

Expected behaviour

There should be a way to delete users, which no longer exist in the SSO backend

Actual behaviour

No longer existing users have to be manually cleaned up in nextcloud

Server configuration

Operating system: Debian 12 (Docker image)

Web server: FPM / Nginx

Database: MariaDB

PHP version: The Version that comes in the Docker image

Nextcloud version: (see Nextcloud admin page) All nextcloud 27 versions

Where did you install Nextcloud from: Helm Chart / Docker container

blizzz commented 7 months ago

Nextcloud does not know which users are in your repository (unless you use it in conjunction with e.g. LDAP). The only thing the IdP does it to tell Nextcloud which user logged in, and potentially some meta data about them. The SAML protocol does not allow that by design.