Replies: 3 comments 5 replies
-
Any news about this? |
Beta Was this translation helpful? Give feedback.
5 replies
-
@peintnermax @stebenz What is your take on that? |
Beta Was this translation helpful? Give feedback.
0 replies
-
this has been shipped with the following PR: #7571 |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Similar to #7023, I would like to know if making the organization metadata available in actions invoked during the external authentication flow is possible.
The intent here is to implement something as close as possible to Auth0's SAML connection mappings. Support people on our end use this feature to easily configure the conversion of attributes from an external SAML IDP into user attributes since SAML attributes change from customer to customer.
We would achieve this by introducing a generic action that can map SAML attributes from an external IDP to user attributes using a "dynamic map". The action would read the dynamic map from an organization metadata item while our API would create that metadata item via REST/gRPC. The action would be configured for all organizations in Zitadel, but the mappings would be different/customized depending on the organization.
I have considered some alternatives for implementing this, but using the organization metadata with a generic action would be the safest way to proceed, in my opinion. Below are the alternatives I have considered:
Beta Was this translation helpful? Give feedback.
All reactions