Saml group mapping v2 by Antiksec · Pull Request #2489 · MobSF/Mobile-Security-Framework-MobSF

Antiksec · 2025-02-06T14:16:23Z

Describe the Pull Request

Rework for SSO mapping:
1) Using list of mapped groups instead of one
2) Exception when SSO logged-in user doesn't have suitable SSO groups
3) Default role for use when SSO logged-in user has no groups

Checklist for PR

Run MobSF unit tests and lint tox -e lint,test
Tested Working on Linux, Mac, Windows, and Docker
Add unit test for any new Web API (Refer: StaticAnalyzer/tests.py)
Make sure tests are passing on your PR

Additional Comments (if any)

DESCRIBE HERE

…ogic

ajinabraham · 2025-03-23T17:38:45Z

mobsf/MobSF/views/saml2.py

+    elif vrole or settings.IDP_MOBSF_DEFAULT_GROUP == 'Viewer':
+        logger.info('User assigned to %s group.', VIEWER_GROUP)
+        return VIEWER_GROUP
+    logger.warning('User does not have an authorized SSO group.')


Is there a reason to support this? We do not want to over complicate SSO roles. MobSF only has two role privileges a read-only default role for everyone and a read-write maintainer role for maintainer group.

ajinabraham · 2025-03-23T17:42:01Z

mobsf/MobSF/views/saml2.py

        email = attributes['email'][0]
        role = get_user_role(attributes['role'])
+        if not role:
+            raise Exception(


Users/Groups that doesn't need MobSF access shouldn't be added in the MobSF SAML app.
https://mobsf.github.io/docs/#/sso

ajinabraham · 2025-06-23T05:01:15Z

Closing this as the PR is not active.

Khabarov Konstantin Olegovich added 3 commits February 6, 2025 16:01

added Default group when user has no role, some rework in SSO roles l…

5705c97

…ogic

cleaned up the typo

3d284df

fix exeption message

c69a7b6

Antiksec mentioned this pull request Feb 6, 2025

Sso groups mapping MobSF/docs#32

Open

Khabarov Konstantin Olegovich added 3 commits February 6, 2025 17:27

delete space

862ccfa

fix logger print

d29504b

linter fix

96d485c

ajinabraham reviewed Mar 23, 2025

View reviewed changes

ajinabraham closed this Jun 23, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Saml group mapping v2#2489

Saml group mapping v2#2489
Antiksec wants to merge 6 commits intoMobSF:masterfrom
Antiksec:saml_group_mapping_v2

Antiksec commented Feb 6, 2025

Uh oh!

ajinabraham Mar 23, 2025

Uh oh!

ajinabraham Mar 23, 2025

Uh oh!

ajinabraham commented Jun 23, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Uh oh!

Conversation

Antiksec commented Feb 6, 2025

Describe the Pull Request

Checklist for PR

Additional Comments (if any)

Uh oh!

ajinabraham Mar 23, 2025

Choose a reason for hiding this comment

Uh oh!

ajinabraham Mar 23, 2025

Choose a reason for hiding this comment

Uh oh!

ajinabraham commented Jun 23, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants