Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update docs for email domain based organization discovery for self-registration. #4923

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Update docs for email domain based organization discovery for self-registration. #4923

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
5e9d7df
Update docs for email domain discovery for self-signup
Yasasr1 Dec 9, 2024
8d1e3e2
Address review comments.
Yasasr1 Dec 10, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Binary file modified ...ation/manage-organizations/enable-email-domain-based-organization-discovery.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
55 changes: 54 additions & 1 deletion en/identity-server/next/docs/apis/restapis/organization-discovery-config-mgt.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -91,6 +91,55 @@ paths:
]
}'
x-codegen-request-body-name: body
put:
tags:
- Discovery
summary: Update organization discovery configuration.
description: |
This API provides the capability to update discovery configuration of the primary organization. <br>

<b>Scope(Permission) required:</b> `internal_organization_config_update`
operationId: updateDiscoveryConfig
requestBody:
content:
application/json:
schema:
$ref: '#/components/schemas/Config'
responses:
'200':
description: Successful Response
content:
application/json:
schema:
$ref: '#/components/schemas/Config'
'400':
$ref: '#/components/responses/BadRequest'
'401':
$ref: '#/components/responses/Unauthorized'
'403':
$ref: '#/components/responses/Forbidden'
'500':
$ref: '#/components/responses/ServerError'
x-codeSamples:
- lang: Curl
source: |
curl --location --request PUT 'https://localhost:9443/api/server/v1/organization-configs/discovery' \
-H 'Content-Type: application/json' \
-H 'Accept: application/json' \
-H 'Authorization: Basic YWRtaW46YWRtaW4=' \
-d '{
"properties": [
{
"key": "emailDomain.enable",
"value": true
},
{
"key": "emailDomainBasedSelfSignup.enable",
"value": false
}
]
}'
x-codegen-request-body-name: body
delete:
tags:
- Discovery
Expand Down Expand Up @@ -149,6 +198,11 @@ components:
type: array
items:
$ref: '#/components/schemas/Properties'
example:
- key: emailDomain.enable
value: true
- key: emailDomainBasedSelfSignup.enable
value: false
Properties:
required:
- key
Expand All @@ -161,7 +215,6 @@ components:
value:
type: string
example: true

responses:
BadRequest:
description: Invalid input in the request.
Expand Down
Binary file modified ...ation/manage-organizations/enable-email-domain-based-organization-discovery.png
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
18 changes: 17 additions & 1 deletion ...des/guides/organization-management/email-domain-based-organization-discovery.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,9 +27,25 @@ and user Bob and Ben, with emails `[email protected]` and `[email protected]` should be
### Using the Console

1. Login to the organization (root) from the {{ product_name }} Console.
2. On the {{ product_name }} Console, go to **Login & Registration**, and click **Email Domain Discovery** under **Organization Settings**.
2. On the {{ product_name }} Console, go to **Login & Registration**, and click **Organization Discovery** under **Organization Settings**.
3. Turn on the toggle to enable email domain based organization discovery.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Explain what will happen when toggle is enabled


!!! note
When this is enabled, following restrctions will apply to child organizations during federated authentication and user onboarding.

- Users can self-register, and administrators can onboard users to child organizations, only if the users' email domains match the domains mapped to the corresponding child organization.

{% if (product_name == "WSO2 Identity Server") %}

- If the Identity Provider (IDP) includes a mapped email attribute, federated authentication and Just-In-Time (JIT) provisioning for child organizations are restricted to email domains mapped to those child organizations.

{% endif %}
{% if (product_name == "WSO2 Identity Server") %}

4. Select the **Email domain discovery for self-registration** checkbox if you want to allow users to discover and self-register in child organizations based on their email domain.

{% endif %}

![Enable email domain based organization discovery]({{base_path}}/assets/img/guides/organization/manage-organizations/enable-email-domain-based-organization-discovery.png){: width="700" style="display: block; margin: 0; border: 0.3px solid lightgrey;"}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Need to update Asgrdeo image as well because of title change right?


### Using the API
Expand Down