In our organization, we don't have local users, every user is managed in a SSO system that then we use to do federated login across the different sites and applications.
In such environment, as we have dozens of systems and different people have different permissions on the sites, we need to be retain to keep roles locally but these are wiped out as we reevaluate the roles on login.

I'm posting a simple patch that adds a setting to the roles that need to be kept even if the SAML response does not contain them. Useful for local admins and editors without the hassle of manage this in SSO, which can be very difficult depending on the organization size.

CommentFileSizeAuthor
#2 2882624-local-role-1.patch2.4 KBpcambra
Support from Acquia helps fund testing for Drupal Acquia logo

Comments

pcambra created an issue. See original summary.

pcambra’s picture

Status: Active » Needs review
FileSize
2.4 KB