feat: optionally add domain_hint #628
Conversation
|
At Home Realm Discovery for an application, it says
which I think applies to the The "hinders collaboration" part does not matter if Jenkins or Entra ID has already been configured to require all users to be in the same domain. I'm not sure about the effect on FIDO, though. IMO, it's okay to support the domain_hint parameter in this plugin; but if there are downsides to setting it, then the help text should link to related documentation. |
I tested it with FIDO2 authentication and it still works. |
| @@ -46,6 +46,9 @@ | |||
| <f:checkbox /> | |||
| </f:entry> | |||
|
|
|||
| <f:entry title="${%Domain Hint: The realm of the user in a federated directory}" field="domainHint"> | |||
There was a problem hiding this comment.
the label would normally just be the field name and then either a description or help text to explain what its for
Providing a domain hint allows to bypass the account selector on Microsoft side in case more than one account has been used in the Browser in the past. Documentation for the parameter is here.
Testing done
I locally built the plugin and installed the hpi file into a Jenkins 2.462.1. After adding our domain to the new input field I opened a separate browser. There the user account selector was bypassed and I got logged directly into Jenkins.
Submitter checklist
I don't know how and where to add a test for the feature.
Please consider to merge and release a new plugin version.
Thanks,
Gregor