-
Suggestion
-
Resolution: Unresolved
-
None
-
None
-
4
-
Problem
SSO requests are currently exempted from websudo. Users logged in through SSO can go straight into administration functions without a websudo check which poses a security risk.
Solution
Allow websudo to work with SAML/SSO setup as well as to allow websudo to work with other marketplace SAML/SSO plugins.
Workaround
- Set a new password for the user that was created with JIT provisioning: JIT provisioning creates a user in Bitbucket's Internal Directory and you can define a password for this user. As a side-effect, an administrator will have 2 passwords - the IdP password to log in Confluence and the Internal password to authenticate in secure-sessions.
- is related to
-
CONFSERVER-60263 Ability to have the Websudo functionality working with SAML / SSO
- Gathering Interest
- depends on
-
AAUTH-20 Loading...