-
Bug
-
Resolution: Unresolved
-
Low
-
None
-
4.1.0, 4.2.0
Issue Summary
When configuring Just In Time Provisioning (JIT) on an identity provider it is required to provide an attribute or claim with the user's groups. Not all identity providers support such attributes, especially in the format required by the plugin, which limits the possible identity providers which can be configured
Steps to Reproduce
- Try to configure JIT for an identity provider
- Don't provide a value for the groups claim
- Save the configuration
Expected Results
The changes are saved.
Actual Results
The submission is rejected because a mandatory field was not provided.
Workaround
Currently there is no known workaround for this behavior. A workaround will be added here when available
- supersedes
-
BSERV-12971 Support JIT user provisioning for Bitbucket datacenter with Google IDP
- Closed
- is cloned by
-
AAUTH-586 You do not have permission to view this issue
We're setting up SAML for Jira Data Center and ran into this. It would be great to make this field not required. In our use case when the user account is created, we have a ScriptRunner Listener catch the UserCreated event and add the users to local Jira groups as needed because the groups do not exist in our IdP.