BookStack icon indicating copy to clipboard operation
BookStack copied to clipboard
verified publisher icon BookStackApp

Convert LDAP User to SAML2

Open reddexx opened this issue 1 year ago • 3 comments

Attempted Debugging

  • [X] I have read the debugging page

Searched GitHub Issues

  • [X] I have searched GitHub for the issue.

Describe the Scenario

Hello,

is there a possibility to convert the users from LDAP to SAML2?

Exact BookStack Version

24.10

Log Content

No response

Hosting Environment

Debian (VM)

reddexx avatar Oct 16 '24 08:10 reddexx

Hi @reddexx,

You'd have to update the "External Authentication ID" value to match their new expected value that they'd get from the SAML auth system (the property of which is dictated by the SAML2_EXTERNAL_ID_ATTRIBUTE option). If the same property can be used, which you already have via LDAP, via SAML then you might not need to alter anything on the BookStack side.

If you do need to update many "External Authentication ID" values, you could alternative do this via the API or database.

ssddanbrown avatar Oct 16 '24 10:10 ssddanbrown

@ssddanbrown

For us, the External Authentication ID looks like this:

grafik

but this does not correspond to SAML2 External Authentication ID

reddexx avatar Oct 16 '24 11:10 reddexx

Ah, okay, yeah I doubt you'll have full LDAP DN info in SAML. Would have to change it up to be an appropriate unique ID that your SAML system can provide.

ssddanbrown avatar Oct 16 '24 11:10 ssddanbrown

Since there's been no further follow-up on this I'll go ahead and close it off.

ssddanbrown avatar Feb 25 '25 12:02 ssddanbrown