Ralf Haferkamp
Ralf Haferkamp
### Description When starting authelia there is a startup check for the LDAP server. Opening a connection to the server, reading the RootDSE and checking certain supported features. This creates...
(cherry picked from commit 9b7ec1e4afc754b9ce39cd053aa793febec478a7) Backport of https://github.com/cs3org/reva/pull/4426
The only way to uniquely identify a user provisioned via OpenID connect is to keep track of the `iss` (issuer) and `sub` (subject) claims of the user. So we should...
When autoprovisioning is enabled and one of the claim values changed ((e.g. the displayname or mail address) since the initial user creation we don't update the local user account. We...
We're still lacking an implementation of `GET /v1beta1/drives/{driveid}/items/{itemid}/permissions/{permissionid}`
## Describe the bug Currently the auto provisioning feature in the ocis proxy relies on the confgured `PROXY_USER_OIDC_CLAIM` (`email` by default) to be stable. If a user gets renamed (or...
I've been trying to implicitly add the `LibgreGraph.UUID` scope (to always get the `lg.uuid` claim added to tokens and userinfo) to our client configuration. But it breaks as soon as...
We shoudl add support for some core operational Attributes. Namely: from RFC4512: - creatorsName: the Distinguished Name of the user who added this entry to the directory, - createTimestamp: the...
When writing entries idm should provide at least some basic schema checks: - [ ] make sure `objectClass` Attribute is present - [ ] make sure the RDN attribute is...
The boltDB backend should support basic search indexes for at least presence, equality and prefix matches.