Limitation on retrieveGroupInfo function in WindowsAad.php

Created on 8 June 2023, about 1 year ago

Updated 30 June 2023, 12 months ago

Problem/Motivation

By default, https://graph.microsoft.com/v1.0/me/memberOf displays only the first 100 groups to which the logged-in user belongs. If the user belongs to more than 100 groups, manually assigned roles (role|group) will not be set for the user, and only the authenticated role will be used. The API can retrieve up to 999 groups the user belongs to by using the $top=999 parameter, which can help extend this limit effectively.

Steps to reproduce

Test it with users that belong to more than 100 groups.

Proposed resolution

To bypass the 100 default values, and add a logic to, show the max groups allowed by the API (999) is described below.

From:

case 2:
$uri = 'https://graph.microsoft.com/v1.0/me/memberOf';
break;
To:
case 2:
$uri = 'https://graph.microsoft.com/v1.0/me/memberOf?$top=999';
break;

Adding the patch file to this issue.

Remaining tasks

User interface changes

API changes

Data model changes

🐛 Bug report

Status

Closed: duplicate

Version

2.0

Component

Code

Created by

🇪🇸Spain eduardo.arana

Live updates comments and jobs are added and updated live.

Comments & Activities

Issue created by @eduardo.arana
Comment about 1 year ago →
🇪🇸Spain eduardo.arana
Comment about 1 year ago →
🇪🇸Spain eduardo.arana
Comment about 1 year ago →
🇪🇸Spain eduardo.arana
Comment about 1 year ago →
🇪🇸Spain eduardo.arana
Status changed to Closed: duplicate 12 months ago8:49pm 30 June 2023
Comment 12 months ago →
🇩🇪Germany webflo
Hi, I have committed the patch from issue ✨ Support paginated group results Fixed . It should fix this issue without an limit.

contrib.social Blog FAQ Discussions

Production build 0.69.0 2024