Customizable SAML error message
Problem to solve
For our internal gitlab server, we do single sign-on of users via SAML2. For internal reasons, we have restricted access to a specific user group. Therefore, users who are not currently part of this defined user group will be denied access. This will result in gitlab users seeing the following error message:
Could not authenticate you from SAML because "The status code of the response was not success, was responder => requestdenied".
Whilst the context is entirely correct and accurate, we would like to provide a better experience for our users by providing an option to explain why the request was rejected and what the next internal workflow steps would be for them.
Intended users
Any user authenticating via SAML without the correlating permissions.
User experience goal
Less confusion for the end user with a way for gitlab system admins to provide more context to this error message.
Proposal
Introduce a new variable.
Further details
none
Permissions and Security
No permissions are required.
Documentation
Availability & Testing
Available Tier
Any tier as all have access to SAML authentication.