We would love to be able to synchronise some groups on Discourse with OIDC groups we have. We found that there has been a PR providing this functionality, but it was not considered further:
main ← jalview:openid_connect_groups_maps
closed 02:07AM - 29 Nov 25 UTC
This PR allows mapping of OpenID Connect group membership to Discourse Group mem… bership.
Of mapped Discourse groups, membership is (optionally) removed if the corresponding OpenID Connect group membership is not present.
This is a feature requested several times
(e.g.
https://meta.discourse.org/t/mapping-groups-or-roles-using-keycloak/304277
https://meta.discourse.org/t/does-sso-overrides-groups-work-with-oauth2/175606/13
https://meta.discourse.org/t/managing-group-membership-via-authentication/175950/32 [and others above])
and the feature has been mentioned as #pr-welcome
(https://meta.discourse.org/t/managing-group-membership-via-authentication/175950/30).
I've also added in a match_by_username option since this fits our use-case migrating from Crowd.
Apologies if the code is insufficient, I'm not a native ruby developer! If tests are required please could you point me at documentation that might help me with writing those?
Thank you!
PS Thanks for Discourse!
Would it be possible to include this into Discourse’s functionality?
1 Like