Conversation
github-project-automation
bot
moved this to First review needed
in Combodo PRs dashboard
|
To make this PR relevant, the modifications of HybridAuthLoginExtension.php are in this other PR: Combodo/combodo-hybridauth#7 |
jf-cbd
moved this from First review needed
to Pending technical review
in Combodo PRs dashboard
|
Thank you for this contribution. Provisioning enhancement has been moved into combodo-hybridauth extension to release it apart from iTop official releases. |
|
@TdlQ could you please confirm that this PR can be closed, since the edition made in combodo-hybridauth should provide the same functionality ? (If I'm not wrong, you tested it, right ?) |
Yes, it can be closed. We've been using for a few weeks the full OktaOIDC feature with User provisioning and everything is working properly |
|
That's perfect, thanks for your feedback. |
github-project-automation
bot
moved this from Pending technical review
to Finished
in Combodo PRs dashboard
3 participants
Base information
Symptom (bug) / Objective (enhancement)
We use hybridauth with user provisioning enabled, profiles are defined depending on Okta groups of the external user (it requires some patches to https://github.com/Combodo/combodo-hybridauth to work). The SynchronizeProfiles() function works only when the existing profile list is empty, while creation is OK, updates aren't done correctly and this PR fixes this point.
Reproduction procedure (bug)
In current state of iTop, bug can't be triggered because a User object is created once and never updated after that. I've modified HybridAuthLoginExtension.php so it updates the User (and his profiles) everytime.
Cause (bug)
One issue is related to false and 0 being mixed up (return of array_search). Second issue is that Fetch() does not handle modified list very well and a deletion prevent the next item to be properly evaluated.
Proposed solution (bug and enhancement)
See code, fixes are trivial.
Checklist before requesting a review