Add SAML Auth for Approvals (!137067) · Merge requests · GitLab.org / GitLab

What does this MR do and why?

Reintroduction of the SAML MR approval feature. This version fixes the bug with nested groups and adds a feature flag.

Add SAML Auth for Approvals

Add custom callback controller to handle IdP response

Refs:

&11982 (closed) SAML SSO authentication for merge request appro... (&11982 - closed)
&11084 SAML SSO authentication for merge request approval (&11084)
#421959 (closed) [BE] Add optional SAML auth flow to MergeReques... (#421959 - closed)
#421961 (closed) [FE] SAML based Merge Request Approval (#421961 - closed)
!136772 (merged) Fix SAML approval group SSO path (!136772 - merged)
!136838 (closed) Draft: Use root group's token for SSO redirect (!136838 - closed)

Changelog: added EE: true

Screenshots or screen recordings

Screenshots are required for UI changes, and strongly recommended for all other merge requests.

Before	After

How to set up and validate locally

Use: !130204 (merged)

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Aug 04, 2025 by SAM FIGUEROA

Add SAML Auth for Approvals

What does this MR do and why?

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports