Missing groups
We use Microsoft Entra ID on microsoft azure.
We send all posisble group sin the token, but we keep missing a lot of groups. Some users have over 150 groups! We cannot figer out what to do for the group configuration to arrive completely.
This is the setting:
AUTH_ADFS = {
'AUDIENCE': client_id,
'CLIENT_ID': client_id,
'CLIENT_SECRET': client_secret,
'CLAIM_MAPPING': {'first_name': 'given_name',
'last_name': 'family_name',
'email': 'upn'},
'GROUPS_CLAIM': 'groups',
'MIRROR_GROUPS': True,
'USERNAME_CLAIM': 'upn',
'TENANT_ID': tenant_id,
'RELYING_PARTY_ID': client_id,
'LOGIN_EXEMPT_URLS': [
'^api',
],
}
In Entra ID:
in tokenconfiguration we have the groupclaim:
Securitygroups
Directory roles
All groups
Groups configured for applications
We believe everything is complete, but it turns out that a specific user who has 200 groups according to entra ID, only shows up with 100 groups in Django.
I cannot find something like a cutoff (groups run form a to z) but we are missing vital groups.
Can anyone explain me how we have to fix this, so that everything shows up?
How does funding with Polar work?
Pay now to fund the work behind this issue.
Get updates on progress being made.
Maintainer is rewarded once the issue is completed.
Backer
You're funding impactful open source efforts
Contributor
You want to contribute to this effort
Maintainer
You want to get funding like this too