orandev

We would like that feature in order to restrict SAML Authentication requests arriving on our IdP to requests originating from a trusted relying party only.

It can lead to bruteforce attacks. If signing is in place, the IdP won't even attempt to authenticate the login/password if the request is not correctly signed.

Hello Do you have any news on that subject?

Ok thanks, I'll look into that.

Hello It's not a "virtual group", but a "virtual group user". My understanding is that you would create a dedicated user account in your Nextcloud (a user named "groupfolder_project1" for...