User Group Limit

  • felix.cmas
    Participant
    # 6 months, 3 weeks ago

    Hi!

    Recently i’ve run into an issue with our mO SAML SSO plugin, regarding the user group mapping.
    We’re doing manual group mapping of Entra gorups to Confluence groups, and Entra users need to have a specific group set to be able to login to Confluence.

    One of our users is unable to login, even though he is a memver of the required entra group:
    [miniorange.oauth.utils.OAuthHttpUtils] redirectToLoginWithOAuthError Authentication failed because The user is not allowed to login into the application.

    This seems to happen, because the default Microsoft Graph API call only retrieves the first 100 groups, and the plugin seems to be ignoring the ‘@odata.nextLink’ attribute:
    [miniorange.oauth.utils.OAuthUtils] findKey array length : 100

    See https://learn.microsoft.com/en-us/graph/paging?tabs=http.

    As the user is a member of 121 entra groups, the plugin does not recognize the groups relevant to the group mapping:
    [oauth.confluence.handler.OAuthConfluenceUserGroupHandler] addUsersToGroups Adding groups to user : <REDACTED> and groups are : []

    Could someone from the mini orange team please confirm this issue?
    If you need any additional logs/configuration, please provide me with an email address where i can send them to.

    Felix

    adityakekre
    Participant
    # 5 months, 4 weeks ago

    Hi Felix,

    Thank you for reaching out and bringing this to our attention. We apologize for any inconvenience the plugin may have caused.
    Could we please connect on a call to better understand and resolve the issue? You can create a ticket with us using this link, and share your availability. I will then schedule a call accordingly to look into the issue. Rest assured, we are committed to resolving this issue promptly.
    Looking forward to your response.

    Best Regards,
    Aditya Kekre

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.