Skip to content

Document multi-user setup and SSO options #6

Description

@science

Summary

Document how to add users to DefectDojo and explore SSO integration options.

Current State

  • Only admin user exists
  • Each developer could have their own account to view findings for their products
  • No SSO configured

Tasks

  • Document manual user creation process
  • Research SAML/OIDC SSO options for DefectDojo
  • Consider GitHub OAuth integration
  • Document user role permissions (staff vs superuser vs read-only)

User Roles in DefectDojo

  • Superuser: Full admin access
  • Staff: Can manage products/engagements
  • Reader: Can view findings (good for developers)

SSO Options

  • DefectDojo supports SAML
  • Could integrate with GitHub, Okta, Google Workspace

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions