kaslo/synapse
1
0
Fork 0
Code Packages Releases 124 Wiki Activity

Handle "registration_enabled" parameter for CAS (#16262)

Browse Source 
Similar to OIDC, CAS providers can now disable registration such
that only existing users are able to login via SSO.
This commit is contained in:
Aurélien Grimpard
2023-09-06 20:32:24 +02:00
committed by GitHub
parent 32fb264120
commit fe69e7f617
5 changed files with 30 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
docs/usage/configuration/config_documentation.md
View File

@@ -3430,6 +3430,12 @@ Has the following sub-options:
and the values must match the given value. Alternately if the given value
is `None` then any value is allowed (the attribute just must exist).
All of the listed attributes must match for the login to be permitted.
* `enable_registration`: set to 'false' to disable automatic registration of new
users. This allows the CAS SSO flow to be limited to sign in only, rather than
automatically registering users that have a valid SSO login but do not have
a pre-registered account. Defaults to true.
*Added in Synapse 1.93.0.*
Example configuration:
```yaml
@@ -3441,6 +3447,7 @@ cas_config:
required_attributes:
userGroup: "staff"
department: None
enable_registration: true
```
---
### `sso`