Steps for mapping guests in Keycloak SAML #8572

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Open

DHaussermann wants to merge 3 commits into master from saml-guest-info

+36 −0

Contributor

DHaussermann commented Dec 2, 2025

Steps for mapping guests in Keycloak SAML


          Steps for mapping guests in Keycloak SAMl

2ef3c9c

DHaussermann self-assigned this

DHaussermann requested review from cwarnermm and hanzei

December 2, 2025 22:13

github-actions bot commented Dec 2, 2025

Newest code from mattermost has been published to preview environment for Git SHA 2ef3c9c

1 similar comment

github-actions bot commented Dec 2, 2025

Newest code from mattermost has been published to preview environment for Git SHA 2ef3c9c

Contributor Author

DHaussermann commented Dec 2, 2025 •

edited

Loading

Hi @cwarnermm and @hanzei
As per recent conversation with Ben I had this PR sitting on my local.

The wording should be fine but unfortunately, I don't know how to preview what sso-saml-keycloak.rst will look like with these edits. I am just trying to match the existing style somewhat.

~~Can one of you assist in how I can spin up a preview so I can also match the style for consistency.~~


          - Fix an alt tag

73626b6

- Fix an italic fromat markdown
- Added whitespace above images for consistency

github-actions bot commented Dec 2, 2025

Newest code from mattermost has been published to preview environment for Git SHA 73626b6

Member

cwarnermm commented Dec 3, 2025

Hi @DHaussermann! Docs previews are auto-generated for all docs PRs, and each time changes are made to a PR, a new preview is generated. The github-actions bot will provide a link to the preview like this:

And when you click that link, you're taken to a build of the docs that includes your changes. From your file changes, copy the file path (omitting source) into the browser, replacing .rst or .md with HTML to go straight to changed pages you want to review.


          Merge branch 'master' into saml-guest-info

e390cce

github-actions bot commented Dec 3, 2025

Newest code from mattermost has been published to preview environment for Git SHA e390cce

Contributor Author

DHaussermann commented Dec 3, 2025

@cwarnermm or @hanzei this change is ready for review.

hanzei added 1: Dev Review 2: Editor Review labels

hanzei approved these changes

View reviewed changes

Contributor

hanzei left a comment

Nice on! 🎉

hanzei removed the 1: Dev Review label

cwarnermm reviewed

View reviewed changes

Member

cwarnermm left a comment

Thanks, @DHaussermann! Editorial feedback provided inline.

source/administration-guide/onboard/sso-saml-keycloak.rst

    
              Configuing a SAML user as a Guest in Keycloak

              ---------------------------------------------

              1. In the Mattermost **System Console** go to **Authentication > SAML**.

Member

cwarnermm Dec 4, 2025

Suggested change

      
            1. In the Mattermost **System Console** go to **Authentication > SAML**.
          
            1. In Mattermost, go to **System Console > Authentication > SAML**.

source/administration-guide/onboard/sso-saml-keycloak.rst

    
              1. In the Mattermost **System Console** go to **Authentication > SAML**.

              2. Set the **Guest Attribute** to the a value you will use to designate which SAML users are guests

Member

cwarnermm Dec 4, 2025

Suggested change

      
            2. Set the **Guest Attribute** to the a value you will use to designate which SAML users are guests
          
            2. Set the **Guest Attribute** to designate which SAML users are guests.

source/administration-guide/onboard/sso-saml-keycloak.rst




		3. In the Keycloak admin UI add a user attribute mapper for guests

Member

cwarnermm Dec 4, 2025

Suggested change

      
            3. In the Keycloak admin UI add a user attribute mapper for guests
          
            3. In the Keycloak administration interface, add a user attribute mapper for guests.

source/administration-guide/onboard/sso-saml-keycloak.rst

    
              3. In the Keycloak admin UI add a user attribute mapper for guests

                - Select *Clients* from the LHS menu

Member

cwarnermm Dec 4, 2025

Suggested change

      
              - Select *Clients* from the LHS menu
          
              a. Select **Clients** from the LHS menu.

source/administration-guide/onboard/sso-saml-keycloak.rst

    
              3. In the Keycloak admin UI add a user attribute mapper for guests

                - Select *Clients* from the LHS menu

                - Select *mattermost* from the list

Member

cwarnermm Dec 4, 2025

Suggested change

      
              - Select *mattermost* from the list
          
              b. Select **mattermost** from the list.

source/administration-guide/onboard/sso-saml-keycloak.rst

    
              4. In Keycloak specify which users are guest by adding the attribute under **User details** 

                - Select *Users* from the LHS menu

Member

cwarnermm Dec 4, 2025

Suggested change

      
              - Select *Users* from the LHS menu
          
              a. Select **Users** from the LHS menu.

source/administration-guide/onboard/sso-saml-keycloak.rst

    
              4. In Keycloak specify which users are guest by adding the attribute under **User details** 

                - Select *Users* from the LHS menu

                - Click the username of the desired user

Member

cwarnermm Dec 4, 2025

Suggested change

      
              - Click the username of the desired user
          
              b. Select the username of the desired user.

source/administration-guide/onboard/sso-saml-keycloak.rst

    
                - Select *Users* from the LHS menu

                - Click the username of the desired user

                - Select *Attribute* tab and click *+ add an attribute*

Member

cwarnermm Dec 4, 2025

Suggested change

      
              - Select *Attribute* tab and click *+ add an attribute*
          
              c. Select the **Attribute** tab and select **+ add an attribute**.

source/administration-guide/onboard/sso-saml-keycloak.rst

    
                - Select *Users* from the LHS menu

                - Click the username of the desired user

                - Select *Attribute* tab and click *+ add an attribute*

                - Add the key and value as shown

Member

cwarnermm Dec 4, 2025

Suggested change

      
              - Add the key and value as shown
          
              d. Add the key and value.

source/administration-guide/onboard/sso-saml-keycloak.rst

    
                - Add the key and value as shown

                    .. image:: ../../images/guest-user-attribute.png

                      :alt: <Adding attribute to a user>

Member

cwarnermm Dec 4, 2025

Suggested change

      
                    :alt: <Adding attribute to a user>
          
                    :alt: An example of adding an attribute to a user.

cwarnermm added 3: Reviews Complete and removed 2: Editor Review labels

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

3: Reviews Complete