Add a function to map to organization with information provided by SAML

[argon-kr]

Please confirm the following

• I agree to follow this project's code of conduct.
• I have checked the current issues for duplicates.
• I understand that AWX is open source software provided for free and that I might not receive a timely response.

Feature type

Enhancement to Existing Feature

Feature Summary

Dear AWX contributors
We are using SAML authentication in AWX.
And need to manage the permissions of a very large number of employees with SAML Authentication.

But only mapped to organization admins/users from social auth accounts in "SAML ORGANIZATION MAP"
Code Link - Matching the Users who have already been created information.
This makes it difficult to manage detailed settings.
ex) Uniting two organizations into one organization

❗And This is a potential security risk❗ because the email can be updated directly by the user.

Please add a function to map to organization with information provided by SAML

Select the relevant components

• UI
• API
• Docs
• Collection
• CLI
• Other

Steps to reproduce

Please allow us to specify the attributes recognized by SAML ORGANIZATION MAP"
So ​​that we can specify attributes provided from SAML other than username and email

Current results

SAML ORGANIZATION MAP can only be mapped to username and email.

Sugested feature result

• Easy inter-organizational integration
• Remove potential security threats

Additional information

No response

[djyasin]

Hello @argon-kr,
Thank you for your time! We would like to gather a bit more information from you. Could you please elaborate on the desired functionality?

We also have some documentation regarding organization mapping that you may find helpful. Step 12 does highlight what you are inquiring about specifically: https://ansible.readthedocs.io/projects/awx/en/latest/administration/ent_auth.html#saml-settings

Please let us know if this documentation resolves your query! If not, please let us know.