Details

    • Docs QE Status:
      NEW
    • QE Status:
      NEW

      Description

      Many SAML SSO use case requires Many-to-one mapping or transient users (via transient nameid) that only need one local "proxy user" to be mapped and ideally the saml attributes to be populated as session attributes to be used by the application.

      This use case is widely use to avoid complication of maintaining local account for each federated users.
      Local account of course is maintain at application side and the role of the Federation SSO server (keycloak) is to just facilitate the SAML brokering.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  hmlnarik Hynek Mlnařík
                  Reporter:
                  longman Long Man
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  4 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: