Support for Azure AD groups #1756

New Issue

OVERLORD · 2026-02-05T01:47:53+03:00

OVERLORD commented

2026-02-05 01:47:53 +03:00

Originally created by @coaqii on GitHub (Jun 4, 2020).

Describe the feature you'd like
The ability to assign Azure AD groups permissions within Bookstack and on shelves, books and pages.

Describe the benefits this feature would bring to BookStack users
This way user management is from a single admin portal instead of groups within AD and groups within Bookstack.

I don't know exactly how to do this, possibly use the enterprise application to get certain selected groups with members and sync them that way as regular bookstack groups.

Originally created by @coaqii on GitHub (Jun 4, 2020). **Describe the feature you'd like** The ability to assign Azure AD groups permissions within Bookstack and on shelves, books and pages. **Describe the benefits this feature would bring to BookStack users** This way user management is from a single admin portal instead of groups within AD and groups within Bookstack. I don't know exactly how to do this, possibly use the enterprise application to get certain selected groups with members and sync them that way as regular bookstack groups.

OVERLORD closed this issue

2026-02-05 01:47:56 +03:00

OVERLORD commented

2026-02-05 01:48:01 +03:00

@ssddanbrown commented on GitHub (Jun 27, 2020):

Hello @coaqii,

Are you using AzureAD as a social login option for BookStack, or are you using AzureAD via the LDAP or SAML2 option?

@ssddanbrown commented on GitHub (Jun 27, 2020): Hello @coaqii, Are you using AzureAD as a social login option for BookStack, or are you using AzureAD via the LDAP or SAML2 option?

OVERLORD commented

2026-02-05 01:48:05 +03:00

@coaqii commented on GitHub (Jun 28, 2020):

Hi,

I'm using the social login option. We cannot utilize the LDAP option, would SAML2 be better for this?

@coaqii commented on GitHub (Jun 28, 2020): Hi, I'm using the social login option. We cannot utilize the LDAP option, would SAML2 be better for this?

OVERLORD commented

2026-02-05 01:48:11 +03:00

@tiredofit commented on GitHub (Sep 13, 2020):

SAML2 exporting your groups as an attribute would be your best bet to get the groups in a text-format.
Try setting SAML2_DUMP_USER_DETAILS=true in your .env file and share a sanitized version of a user authorization and I'll try to solve.

@tiredofit commented on GitHub (Sep 13, 2020): SAML2 exporting your groups as an attribute would be your best bet to get the groups in a text-format. Try setting `SAML2_DUMP_USER_DETAILS=true` in your .env file and share a sanitized version of a user authorization and I'll try to solve.

OVERLORD commented

2026-02-05 01:48:19 +03:00

@ssddanbrown commented on GitHub (May 2, 2021):

Since the last comment on this issue is relatively old, and since advanced group logic on social logins is not something I'd be immediately looking to support, I'm going to close this. If the issue remains and is something you still require to be fixed please open a new issue, referencing this one.

@ssddanbrown commented on GitHub (May 2, 2021): Since the last comment on this issue is relatively old, and since advanced group logic on social logins is not something I'd be immediately looking to support, I'm going to close this. If the issue remains and is something you still require to be fixed please open a new issue, referencing this one.

Sign in to join this conversation.

Branches Tags

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/BookStack#1756