Hopefully a simple request: It'd be useful to make it so that user fields can be populated the same way that user roles are, using (LDAP attribute value)|(user field value) pairs instead of using the LDAP attribute directly.

For example, say a user has LDAP attribute "departmentID" = 713. As things are, I can map departmentID to a user field called "user_department", but then user_department = 713. What I'd like is to be able to enter a list of (LDAP attribute value)|(user field value) pairs, like "713|Safety", so that when depatmentID = 713, user_department = Safety. If no value is defined for a given LDAP attribute value, then it could default to the current behavior of (user field value) = (LDAP attribute value).

I know this is already possible for roles, I'd just like to do this with user fields too. Please let me know if it's already possible.

Thanks!

Comments

BassmanBiff created an issue. See original summary.

BassmanBiff’s picture

BassmanBiff CreditAttribution: BassmanBiff commented
Issue summary: View changes
grahl’s picture

grahl
he/him
Location Zürich
CreditAttribution: grahl as a volunteer commented
Status: Active » Postponed
Issue tags: -LDAP provisioning

Anybody have a preliminary patch or workaround? Closing otherwise.

grahl’s picture

grahl
he/him
Location Zürich
CreditAttribution: grahl as a volunteer commented
Status: Postponed » Closed (outdated)