It is possible to invite a user that also implicitly has access to an org via an owned IdP. If the user comes in through that IdP and triggers the OrgAddUserAuthenticatorFactory in the post org broker flow, we should look up and complete outstanding invitations to that org for the user.
xgp
commented
4 months ago
It is possible to invite a user that also implicitly has access to an org via an owned IdP. If the user comes in through that IdP and triggers the
OrgAddUserAuthenticatorFactoryin thepost org broker flow, we should look up and complete outstanding invitations to that org for the user.Using the code from here https://github.com/p2-inc/keycloak-orgs/blob/main/src/main/java/io/phasetwo/service/auth/invitation/InvitationRequiredAction.java#L100-L114
Should go here https://github.com/p2-inc/keycloak-orgs/blob/main/src/main/java/io/phasetwo/service/auth/OrgAddUserAuthenticatorFactory.java#L63