Univention Bugzilla – Bug 55787
Saml serviceprovider groups should evaluate nested group memberships
Last modified: 2023-03-07 14:30:50 CET
The same feature is missing in Keycloak. +++ This bug was initially created as a clone of Bug #55085 +++ With UCS 4 it was possible recursively allow access to a service provider. e.g.: - UserA is member of GroupB - GroupB is member of GroupA - GroupA is allowed to use ServiceproviderA As UserA is recursively member of GroupA, he was allowed to accerss ServiceProviderA With UCS 5, Groups in Groups like this scenario doesn't work anymore. Only direct memberships are working.
*** This bug has been marked as a duplicate of bug 55770 ***