I’m figuring out how to allow the same user to acc...
# gooddata-cnj
Jani Siivola
03/02/2023, 8:36 AMI’m figuring out how to allow the same user to access multiple GoodData workspaces with the combination of users and their groups. In our application we also have a concept of a workspace. User with the same authentication id can access multiple workspace. However user’s
id Copy code
{
"id": "user-id-1",
"type": "user",
"attributes": {
"authenticationId": "auth-id-abc"
}
},
{
"id": "user-id-2",
"type": "user",
"attributes": {
"authenticationId": "auth-id-abc"
}
},i
Ivana Gasparekova
03/02/2023, 10:05 AMHi Jani,
Are you working with GoodData Cloud and OIDC?
Or what exactly is your current setup, please?
j
Jani Siivola
03/02/2023, 10:23 AMAt the moment just for testing we use the docker container version but otherwise GoodData Cloud yes. And OIDC through Auth0
r
Robert Moucha
03/02/2023, 12:03 PMauthenticationId must be unique within one organization. This attribute is used for deciding what gooddata user actually logged in. If you have one authenticationId assigned to multiple users, the result is undefined.
You need to adjust your user mapping so that one person (identitfied by unique authenticationId) must be mapped to one gooddata user.
Users can be later granted to particular workspaces using permissions model.
j
Jani Siivola
03/02/2023, 1:23 PMOk makes sense. I just need to figure what could the user’s
ididk
Kevin Taylor
03/02/2023, 6:29 PMOnce you standardize this back to single id to single authenticationid, this should work as you expect, I use the model of creating groups per-workspace, and I just add the user to each group to grant them access. This works as expected and they are able to see all workspaces they are members of the access groups for.
r
Robert Moucha
03/03/2023, 8:50 AMAs you have full control over user's
idmd5sum(authenticationId)👍 1
j
Jani Siivola
03/03/2023, 11:24 AMIn my case I need to use authenticationId so md5sum might be the best way to go