Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-61381

Groups synchronization with Azure AD does not work if user has more than 150 groups

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed (View Workflow)
    • Priority: Minor
    • Resolution: Not A Defect
    • Component/s: saml-plugin
    • Labels:
      None
    • Environment:
      Jenkins 2.190.1
      SAML Plugin 1.1.5
    • Similar Issues:

      Description

      I integrated Jenkins with Azure AD using the SAML plugin. I created in Azure AD a group claim to send the Jenkins the groups list the user is member of. The problem is if the user has more than 150 groups then Azure AD, instead of sending the groups claim, it sends a claim with name http://schemas.microsoft.com/claims/groups.link and value a Microsoft Graph link to get the list of groups. The SAML plugin is not calling the Microsoft Graph API and JEnkins thinks the user is not member of any group. 

        Attachments

          Activity

          pgomez Pablo Gomez created issue -
          ifernandezcalvo Ivan Fernandez Calvo made changes -
          Field Original Value New Value
          Priority Critical [ 2 ] Minor [ 4 ]
          ifernandezcalvo Ivan Fernandez Calvo made changes -
          Resolution Not A Defect [ 7 ]
          Status Open [ 1 ] Closed [ 6 ]

            People

            Assignee:
            ifernandezcalvo Ivan Fernandez Calvo
            Reporter:
            pgomez Pablo Gomez
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: