Bug 1480005 - Allow groups to be associated with IDPs
Allow groups to be associated with IDPs
Status: ON_DEV
Product: Bugzilla
Classification: Community
Component: Extensions (Show other bugs)
5.0
Unspecified Unspecified
unspecified Severity unspecified (vote)
: ---
: ---
Assigned To: Jeff Fearn
tools-bugs
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2017-08-09 18:12 EDT by Jeff Fearn
Modified: 2017-08-31 19:02 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Jeff Fearn 2017-08-09 18:12:02 EDT
Description of problem:
In addition to being able to restrict who can use an IDP we need the ability to force a group to use an IDP. The requirement here is to be able to force specific groups to use a two factor IDP and not use a single factor IDP or fallback to password login in the web UI.

Version-Release number of selected component (if applicable):
5.0

How reproducible:
Easy

Steps to Reproduce:
1. Try and limit the admin group to a two factor IDP.

Actual results:
You can't.

Expected results:
You can.

Additional info:
Comment 1 Jeff Fearn 2017-08-09 18:20:32 EDT
Psst future me, don't forget to amend the IDP configuration script to remove the regex limitation from the external IDP.

Note You need to log in before you can comment on or make changes to this bug.