Bug 56973 – ID Broker SSO configuration missing for Keycloak

Bug 56973 - ID Broker SSO configuration missing for Keycloak


Summary:	ID Broker SSO configuration missing for Keycloak

Status:	NEW

Product:	UCS@school
Classification:	Unclassified
Component:	Documentation
Version:	UCS@school 5.0
Hardware:	Other Linux

Importance:	P5 normal (vote)
Target Milestone:	---
Assigned To:	UCS@school maintainers
QA Contact:

URL:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2024-01-10 17:30 CET by Jan-Luca Kiok
Modified:	2024-01-10 17:42 CET (History)
CC List:	1 user (show)

See Also:
What kind of report is it?:	Bug Report
What type of bug is this?:	4: Minor Usability: Impairs usability in secondary scenarios
Who will be affected by this bug?:	2: Will only affect a few installed domains
How will those affected feel about the bug?:	3: A User would likely not purchase the product
User Pain:	0.137
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Jan-Luca Kiok

2024-01-10 17:30:41 CET

The ID Broker SSO configuration does only specify how to configure SimpleSAMLphp, but not how to do the same with Keycloak: https://docs.software-univention.de/idbroker-school-authority-manual/configuration.html#login-with-sso-using-the-id-broker

This mainly boils down to providing a way to add a new SAML serviceprovider via  `univention-keycloak` instead of `udm saml/*`.