dependency-track icon indicating copy to clipboard operation
dependency-track copied to clipboard

Published 20 hours ago verified publisher icon DependencyTrack

Add Group ID or comments to groups in OIDC Groups

Open YurrytVermeire opened this issue 3 years ago • 1 comments

The enhancement may already be reported! Please search for the enhancement before creating one.

Current Behavior:

You have to use object-ID's to specify which groups you want, for example from an Azure AD, to authenticate and authorize. When viewing the OIDC Groups tab, only the Object-ID's are visible which makes it very hard to distinguish groups from each other.

image

Proposed Behavior:

When adding a Group you must specify the name (Which is the name of the group in your AD or user management application) and an ID (which is the object-ID from that specified group)

image

This will make OIDC Group management more uncluttered and easier to use in larger scale organizations

YurrytVermeire avatar May 30 '22 08:05 YurrytVermeire

This is yet another area where different SSO providers have different behaviors. In Keycloak for example, there is no such thing as Group ID. So we can't make that additional field mandatory.

But I agree that in case of Azure AD only seeing the cryptic Group ID is not very user friendly. Maybe an optional Display Name would suffice?

nscuro avatar May 31 '22 19:05 nscuro