Skip to content

Fix oauthsso profile habilitation by rule using dynamic group #21476

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 5 commits into
base: 11.0/bugfixes
Choose a base branch
from
Open

Fix oauthsso profile habilitation by rule using dynamic group #21476

wants to merge 5 commits into from
+117 −1

Conversation

Lainow
Copy link
Contributor

@Lainow Lainow commented Oct 14, 2025
edited
Loading

Checklist before requesting a review

Please delete options that are not relevant.

  • I have read the CONTRIBUTING document.
  • I have performed a self-review of my code.
  • I have added tests that prove my fix is effective or that my feature works.
  • This change requires a documentation update.

Description

  • It fixes !39581
  • Here is a brief description of what this PR does
    Correction of the addition of permissions to a user during an OauthSSO connection when these are added by rules. For example, the criterion for adding a profile is a group from SCIM, which is therefore added dynamically to the user. During the OauthSSO connection, the permissions are removed.

Screenshots (if appropriate):

@Lainow Lainow self-assigned this Oct 14, 2025
@Lainow Lainow requested a review from stonebuzz October 14, 2025 12:49
@Lainow Lainow added the bug label Oct 14, 2025
@Lainow Lainow requested a review from cedric-anne October 14, 2025 13:13
@cedric-anne cedric-anne added this to the 10.0.21 milestone Oct 15, 2025
@cedric-anne cedric-anne requested review from Rom1-B and removed request for cedric-anne October 15, 2025 13:12
Rom1-B
Rom1-B reviewed Oct 16, 2025
View reviewed changes
@Lainow Lainow requested a review from Rom1-B October 16, 2025 09:45
Rom1-B
Rom1-B suggested changes Oct 16, 2025
View reviewed changes
Copy link
Contributor

@Rom1-B Rom1-B left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please add tests

stonebuzz
stonebuzz reviewed Oct 20, 2025
View reviewed changes
Copy link
Contributor

@stonebuzz stonebuzz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could you please add a comment for this part? The authentication process is quite complex, and adding comments here could be useful for debugging purposes.

@Lainow Lainow marked this pull request as draft October 20, 2025 13:00
@Lainow Lainow force-pushed the fix-oauthsso-profile-rule-with-group branch from ec4c10a to 929fada Compare October 21, 2025 13:58
@Lainow Lainow changed the base branch from 10.0/bugfixes to 11.0/bugfixes October 21, 2025 13:58
@Lainow Lainow requested review from Rom1-B and stonebuzz October 21, 2025 13:59
@Lainow Lainow marked this pull request as ready for review October 21, 2025 13:59
stonebuzz
stonebuzz suggested changes Oct 22, 2025
View reviewed changes
Rom1-B
Rom1-B suggested changes Oct 23, 2025
View reviewed changes
tests/functional/UserTest.php Outdated
Comment on lines 2422 to 2427
$group = new \Group();
$group_id = $group->add([
'name' => 'SSO Test Group',
'comment' => 'Group for SSO testing',
]);
$this->assertGreaterThan(0, $group_id);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please use $this->createItem(...

@Lainow Lainow requested review from Rom1-B and stonebuzz October 23, 2025 08:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@stonebuzz stonebuzz Awaiting requested review from stonebuzz

1 more reviewer

@Rom1-B Rom1-B Rom1-B approved these changes

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

@Lainow Lainow

Labels

bug

Projects

None yet

Milestone

10.0.21

Development

Successfully merging this pull request may close these issues.

4 participants

@Lainow @stonebuzz @Rom1-B @cedric-anne