OpenID claim for groups including invited access

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Close this issue

Release notes

When using GitLab as OpenID Connect identity provider, there should be a claim indicating to which groups the users have access including those groups where they got access by another group being invited where users are direct members.

Problem to solve

I use GitLab as OpenID Connect identity provider.
I'm mapping the groups to which the users have access to on GitLab to the other tool.
Currently, the claims only support direct or inherited membership.
This means the claims are missing those groups where the users have access because another group was invited where the users are direct members.

Proposal

Add another claim returning a list of all groups where a user has access to. This includes direct and inherited membership but also access via group invitation

Intended users

• Sidney (Systems Administrator)
• Ingrid (Infrastructure Operator)

Feature Usage Metrics

Does this feature require an audit event?

no