mahara-contributors team mailing list archive

Thread
Date

[Bug 1855560] A change has been merged

To: mahara-contributors@xxxxxxxxxxxxxxxxxxx
From: Mahara Bot <1855560@xxxxxxxxxxxxxxxxxx>
Date: Mon, 27 Jan 2020 05:26:55 -0000
Reply-to: Bug 1855560 <1855560@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Reviewed:  https://reviews.mahara.org/10700
Committed: https://git.mahara.org/mahara/mahara/commit/2641c9be73902eba356039b8fbddd8c6ec1dadf5
Submitter: Cecilia Vela Gurovic (ceciliavg@xxxxxxxxxxxxxxx)
Branch:    master

commit 2641c9be73902eba356039b8fbddd8c6ec1dadf5
Author: Robert Lyon <robertl@xxxxxxxxxxxxxxx>
Date:   Thu Jan 9 09:53:22 2020 +1300

Bug 1855560: SAML role prefix to only allow certain users login access

If the IdP only wants certain users to be able to login and have user
creation in Mahara then their roles need to have a prefix.

We check users on authentication to make sure any of their roles are
allowed and if not stop them from logging in.

behatnotneeded

Change-Id: Ibb892849d245e2580480d20ca04606db3aeb6ff4
Signed-off-by: Robert Lyon <robertl@xxxxxxxxxxxxxxx>

-- 
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions: Subscription for all Mahara Contributors -- please ask on #mahara-dev or mahara.org forum before editing or unsubscribing it!
https://bugs.launchpad.net/bugs/1855560

Title:
  Allow SAML auth to set admin/staff roles on create user

Status in Mahara:
  Fix Committed

Bug description:
  If the IdP authentication packet contains roles we can map those roles
  via the SAML auth instance config form to set user as site admin or
  site staff or institution admin or institution staff on creation.

To manage notifications about this bug go to:
https://bugs.launchpad.net/mahara/+bug/1855560/+subscriptions

References

[Bug 1855560] [NEW] Allow SAML auth to set admin/staff roles on create user
From: Robert Lyon, 2019-12-07