Received: from malur.postgresql.org ([217.196.149.56])
	by arkaria.postgresql.org with esmtps  (TLS1.3) tls
 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <pgadmin-support-owner+archive@lists.postgresql.org>)
	id 1tzEga-00H4ET-Bn
	for pgadmin-support@arkaria.postgresql.org; Mon, 31 Mar 2025 12:56:16 +0000
Received: from localhost ([127.0.0.1] helo=malur.postgresql.org)
	by malur.postgresql.org with esmtp (Exim 4.94.2)
	(envelope-from <pgadmin-support-owner+archive@lists.postgresql.org>)
	id 1tzEgY-005TrO-VJ
	for pgadmin-support@arkaria.postgresql.org; Mon, 31 Mar 2025 12:56:15 +0000
Received: from magus.postgresql.org ([2a02:c0:301:0:ffff::29])
	by malur.postgresql.org with esmtps  (TLS1.3) tls
 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <viktor.madarasz@yahoo.com>)
	id 1tyU3s-009K0F-Op
	for pgadmin-support@lists.postgresql.org; Sat, 29 Mar 2025 11:09:13 +0000
Received: from sonic312-23.consmr.mail.ne1.yahoo.com ([66.163.191.204])
	by magus.postgresql.org with esmtps  (TLS1.3) tls
 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
	(Exim 4.96)
	(envelope-from <viktor.madarasz@yahoo.com>)
	id 1tyU3p-001si2-2u
	for pgadmin-support@lists.postgresql.org;
	Sat, 29 Mar 2025 11:09:12 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048;
 t=1743246547; bh=l/iDeauTNGJhVhu9B5FhVxFvL/+TgHgCewzeRkx8e+E=;
 h=Date:From:To:Subject:References:From:Subject:Reply-To;
 b=F0ZawzTTOltO6hKQzj0v7C/QHFCboUrRx1sXOpje+45mV1b4xr0Us5/Dee8ht+fKuINpzAMsGe8Xgw+C29TETwY3423rNoVJor4Qj8TNvSYkG5IHSwFsytt07sS2NLlMWj4bU5U6kVqsTXUtUjhgm+sfAFEcT8QWu8sei2qveIhoCoKyXGONoZweLLWLaFoL/yeIBdS/PqOx07kDdAYNeADOV6mWXRr0o/f9GHPwGdZytZy72JWqJ51h4e/m8xzPbfHRH52PznW3W7icMsmHWagtSEZjnVdeLKS0ZxSrlBbzY0b7n8bR06n2Mgg/So7qqduGM5sudVqyw/wa0QRyCA==
X-SONIC-DKIM-SIGN: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048;
 t=1743246547; bh=83zNThUKPgDSX2IQaT63KDwMVbBQNDLBqe875Ce2dth=;
 h=X-Sonic-MF:Date:From:To:Subject:From:Subject;
 b=jp6M0Nou/JX4i5o0Lz+eWtUeuGVaJAikbKuXxO7Gd7FUpOG1+C6ctEfD9kErEB5Qua0BQ1pyYoxpNgRpwtEfDuHqzD1IRzRs9HFH/VhbBLoGzH+E5aBXPd37CpoOeglavQpwQe40IYruVm6GTAeEVsuK1xX75yq6eX3pje3y4RVFC1kfcAL7fV5byhG6ex27QtzlbzgbJ1G2hk6ICL5uQVR7d513OlD4wmiVHgtBYXgHffZ/NZtkWyDSlsrcyixx4CSmm3yQ1567m9LZmgptrUA7KdhZ1LgNDC1oylRMlRH7PFDqBR6R5u5HXfsQQwvlsJxXy4lkoisx17U0DIV9FA==
X-YMail-OSG: rZ_zE6UVM1mq9c7gC2CUhMyx7IUuK7RjrbK1M_.VD_JL3eLRVrrkFbkfhzitA81
 xuZzg6LGniW19QJZV4_bd2dSPoS6MZaYMmiF7V2a3GDDvzylk05Z_MwaG41J2iraJkBw1I4ryuUU
 C2loi59N5azLa7jjNKB5J7UTRqr50OTIejrrIxtkhof_e.xflkH73_DfmYhkyFyXS5r8Zd3tQ4qn
 GEs55Ubuqqs36QXDzJBJoamDuL1AgpIdJ8B0tC4BvPXpV06LrCvJp1bGDC0CeIQn4FbGvWHrgQTW
 OHm2O3cl4TAbxcLBi3QMdsRvkk2cqH06pQ209nZxmM_xqtRMYW78z4nleb1_XG2FPpPBN6tXoL0_
 ZskIYV_hgmGtEETCB4a1oQRkEP4sKhGDINOwoHlC.TJpKExG4_XFzcNEnwbEnqvfuBQWrLcOSEDY
 GDBSK8BskFLLcdzRC3SGem.esftcojBSE4ag4Qq1sD57FEwD7Oi_KIXj.eE6cAYQtEdlXTcfqaWX
 YxZtoGkCdiFGx.yNXYzbwJGXL_xAFzapmbgtSvuyYapn9Kumc.eZHH5O7wjJ737g7yd4Zt1wZ.X_
 OTvXNqlCdKJUEvpeR3zqW7AcktFPZtKRAvzcunYQK10FnSv_exlf68URNDup2FtCRFbYjAQVkJuT
 TBDaBjbKuY1YmYN02tfFdQAKpKXafRT276JSWJLjt89iVQYKh9jiJfsT4KloETyMPB0t1HlMR13m
 FullaZIhozCgVjH3996yxxNWAWJjJ5U2I9aqnB23rpMetQ8TC24gq_jcTIMcd9oB3lUVUDhaeZks
 E4h.AVhcLJP57BwPFhg3jeeckZZarU5r8N_VGW08CiOXuOIZJZO33XdDnWWIp_AzCEbYJVOiBUEg
 0J.d4gFcWRYkg84446HFyF1PRglLSFzWXYWvPUgqw6WjqvMHWCb_V4tjLaki5E6CADTXwRDq1WmK
 vT15kDrZkebWcqzAaZ1KOz80XFHvpZBU5AJKwjHTOQpUIZ1iFMxfv.MYso27dwedQSH4bY8DcxC1
 fEYyxNFY2ZmxKvajUS0IQnkkxciLOd8c4oEfg_bwpnMfclMICVQN0KhUutmtnB14yIM7QVFsP_5w
 uMID7UZorqlbtCJJ8l0Hfx7XP7KLh9oE9vMSZRDWUbgewupOg0ws90z72wQ4OBaMpzqtjVZ2c2db
 DX2TMPIvfWBcGvIVXAyPMXROeNY9rlGsU0QRTI5ei9Ox6RoxgrNUU4nS3v36.LS85H3WsvwbfJRC
 9N4iBUglD9Z7jpwQVftw_NLJO4tYBTKJH_hu6cwzhTOdXu9zQMZmnI5P1rgRyGtjjOraI6_dK7Mh
 jvXTjxmX6ZzI60M018qqC12f0rCqBLgNSBH4ABgkwwj9HzScMg4494t0AwIFJCefhu5NtrRd4aSI
 vu7IJTOL8JjnXRXGA1mZEIGdUC4tLaZlT3fdCYWh7OdUNLSYgjYgWPT6sFfO57Jvt72UegHmjZut
 wjZi0yVOJPHkhs_76jyqQ_AMwDC77EvEMnx6wPcHu5JCh3kMQ9e0pEPsYuTPGKe2UEiTopMX9ySz
 uNrWwb1obp1HE5MvPvhSpJ9eb6kE537DUhzzrlbLEKJHuFwU2kiyytg_4lBDLmSAsUY3dghxUW78
 AsKUZx1b69DrZXuduxaofM.Hav4zdxeM3Myq2HNZjYlrp05I9yZcXyest8rFPlaqFAfNYbIbo8Mq
 tMzyT.loap7.n81QyUr30vomXrMjkwDhPk3902Pw.R57ysXY2EnNwUk9CChU.2WSlMJK11DgSGZ9
 qL.mzqxtqwbvZQth5HXt9G92cIMbBhYWaBuJ5Mu32ACXR8OCzwoFrPQwN3WTtDR0inMGR21Oy.s2
 2TO2UG0TSks34lLcTfd16ajayXt1v8UDNYblIMmQ3u8SJnAxdgsURZOQcGW1RLZTi1amrEw4N1DC
 ttCOnS9YbxSgZ06aVDI1zlqGXsH7cnyq4x01BeCy83L_HTcmwXoK8pzLMXOpC9SsbGVfsLF22gWI
 1S9G4CVDXzuGQP0gkIO38Gy99VujfanaRZ6vwvERGnyZZmWKQS7nb8uTAZPMdbfDqMVTq7Zkse5m
 BU60Z_lNBxPrAd3AgXARF.7KngBZdKa0c2I4ur0nWIFyS2zspM5flNfq7wBcj6iIDpoPhkZGHGK_
 HREplWApkcrBEQHu8K32dwxB6gt.86aNvK83VeYUMV20Z2Kb4.mWUOhROumwR1noS385sO9fE6T8
 7bUf9HCfoyHu0R1rb0GdXL3gPrg--
X-Sonic-MF: <viktor.madarasz@yahoo.com>
X-Sonic-ID: cebf57ae-3d35-49d8-b55d-268a68eb0755
Received: from sonic.gate.mail.ne1.yahoo.com by
 sonic312.consmr.mail.ne1.yahoo.com with HTTP; Sat, 29 Mar 2025 11:09:07 +0000
Date: Sat, 29 Mar 2025 11:09:04 +0000 (UTC)
From: Viktor Madarasz <viktor.madarasz@yahoo.com>
To: 
	"pgadmin-support@lists.postgresql.org" <pgadmin-support@lists.postgresql.org>
Message-ID: <1224057069.3389211.1743246544267@mail.yahoo.com>
Subject: Pgadmin4 Webserver Authentication + Azure SAML SSO , anyone ever
 managed to configure it?
MIME-Version: 1.0
Content-Type: multipart/alternative;
	boundary="----=_Part_3389210_317813081.1743246544266"
References: <1224057069.3389211.1743246544267.ref@mail.yahoo.com>
X-Mailer: WebService/1.1.23533 YMailNovation
Content-Length: 2018
List-Id: <pgadmin-support.lists.postgresql.org>
List-Help: <https://lists.postgresql.org/manage/>
List-Subscribe: <https://lists.postgresql.org/manage/>
List-Post: <mailto:pgadmin-support@lists.postgresql.org>
List-Owner: <mailto:pgadmin-support-owner@lists.postgresql.org>
List-Archive: <https://www.postgresql.org/list/pgadmin-support>
Archived-At: 
 <https://www.postgresql.org/message-id/1224057069.3389211.1743246544267%40mail.yahoo.com>
Precedence: bulk

------=_Part_3389210_317813081.1743246544266
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

Hi

Pgadmin4 Webserver Authentication + Azure SAML SSO , anyone ever managed to=
 configure it?

Trying to switch IdP Provider from Onelogin ( working right now with Pgadmi=
n4 + Webserver Authentication + Onelogin as IdP provider=C2=A0 to Azure SAM=
L SSO.

It looks like the mapped attributes might be the one causing the issue comi=
ng from Azure side.

The username in a form of firstname.lastname@domain.com gets parsed correct=
ly but the actual group memberships not being passed along and therefore us=
ers being logged in with read only profiles and it does not respect their g=
roup memberships.
Regards

Viktor



------=_Part_3389210_317813081.1743246544266
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

<html><head></head><body><div class=3D"yahoo-style-wrap" style=3D"font-fami=
ly:Helvetica Neue, Helvetica, Arial, sans-serif;font-size:10px;"><div dir=
=3D"ltr" data-setdir=3D"false"><font size=3D"3">Hi<br><br><span>Pgadmin4 We=
bserver Authentication + Azure SAML SSO , anyone ever managed to configure =
it?<br><br>Trying to switch IdP Provider from Onelogin ( working right now =
with Pgadmin4 + Webserver Authentication + Onelogin as IdP provider&nbsp; t=
o Azure SAML SSO.<br><br>It looks like the mapped attributes might be the o=
ne causing the issue coming from Azure side.<br><br>The username in a form =
of firstname.lastname@domain.com gets parsed correctly but the actual group=
 memberships not being passed along and therefore users being logged in wit=
h read only profiles and it does not respect their group memberships.</span=
></font></div><div dir=3D"ltr" data-setdir=3D"false"><font size=3D"3"><span=
><br></span></font></div><div dir=3D"ltr" data-setdir=3D"false"><font size=
=3D"3"><span>Regards<br><br>Viktor<br></span><br></font><br></div></div></b=
ody></html>
------=_Part_3389210_317813081.1743246544266--