Product: PowerShell Universal
Version: 5.4.3
I have a published folder with Auth enabled.
Users authenticate via AZURE and SAML2.
I have edited the security/roles scripts to assign roles based on SAML2 provided claims.
A user or a Azure group can have multiple assigned roles.
This works just fine with apps.
But when I try to access a published folder, I get
You don’t have authorization to view this page.
HTTP ERROR 403
I tried in an incognito browser tab, got redirected to Azure SSO, signed in, and same error.
Again, my bad.
It actually works.
What does not work is:
Any external account, added by SAML2 authentication, that got an extra role assigned through the GUI, will not have any other roles assigned by roles scripts…
E.G.:
You have role scripts that assign ext. USER_A the roles ROLE_1 and ROLE_2.
Works nicely.
Now you add Administrator in the GUI to ext. USER_A.
It still can access all apps that require a role.
But it cannot access published folders that require a role for access.
Anyway, I understood that now and will add a fix for my setup.