Add superuser access to a user is not possible when SSO is used #19169

Expected Behavior

There is no input form for password received (because the user does not know/have a password)

Current Behavior

A popup is showing that request the user got given his password, which he doesn't know.

Possible Solution

see "Expected Behaviour"

Steps to Reproduce (for Bugs)

1. got to the admin panel with a user that has logged in via SSO
2. go to System -> Users
3. choose a user that is not a superuser
4. enable superuser access (the popup appears)

Your Environment

Matomo Version 4.9.0
PHP version >= 7.2.5 8.0.12
PHP_OS Linux

Hi @mstenz
Which plugin are you using for SSO access? Are you using the SAML plugin or LoginLDAP plugin?

@sgiehl Hi, I am using LoginOIDC, because it authenticates with Gitlab

Iirc we had similar issues with LoginLdap, but can't remember if there was a solution for that. Maybe @tsteur or @diosmosis know?

@sgiehl had a quick search in the LoginLdap Issues. There was this PR: https://github.com/matomo-org/plugin-LoginLdap/pull/185 maybe it's that? I couldn't find anything else

Same issue here with LoginOIDC plugin
https://github.com/matomo-org/matomo/issues/19235

Do you know when the prioritization will occur ?

+1 ;p

up ;-)

Adding to current milestone.

@mstenz @miton18 With #19525 we will most likely introduce a new event, which can then be used to disabled the password confirmation for certain users in UI and API. Login plugins will then need to implement this event.

perfect, thank you