starred/CIPP
1
0
Fork 0
mirror of https://github.com/KelvinTegelaar/CIPP.git synced 2026-04-26 00:36:27 +03:00
Code Issues 20 Projects Releases 5 Packages Wiki Activity

[GH-ISSUE #5457] [Bug]: GDAP Check still listing 12 GDAP groups #2631

New issue
Closed
opened 2026-03-02 13:53:53 +03:00 by kerem · 9 comments
kerem commented 2026-03-02 13:53:53 +03:00
Owner
Copy link

Originally created by @joelmacklow on GitHub (Feb 24, 2026).
Original GitHub issue: https://github.com/KelvinTegelaar/CIPP/issues/5457

Originally assigned to: @Zacgoose on GitHub.

Required confirmations before submitting

  • I can reproduce this issue on the latest released versions of both CIPP and CIPP-API.
  • I have searched existing issues (both open and closed) to avoid duplicates.
  • I am not requesting general support; this is an actual bug report.

Issue Description

In v10.1.1 the number of recommended GDAP role memberships seems to have increased from 12 to 15 as per https://docs.cipp.app/setup/installation/recommended-roles. The GDAP Check pane seems to imply that there are still only 12. Is it checking for 15 or still 12?

Steps

  1. CIPP
  2. Application Settings
  3. Permissions
  4. GDAP Check pane lists "User is a member of the 12 CIPP Recommended GDAP groups"

Environment Type

Non-sponsored user

Front End Version

v10.1.1

Back End Version

v10.1.1

Relevant Logs / Stack Trace
Originally created by @joelmacklow on GitHub (Feb 24, 2026). Original GitHub issue: https://github.com/KelvinTegelaar/CIPP/issues/5457 Originally assigned to: @Zacgoose on GitHub. ### Required confirmations before submitting - [x] **I can reproduce this issue on the latest released versions** of both CIPP and CIPP-API. - [x] **I have searched existing issues** (both open and closed) to avoid duplicates. - [x] I am **not** requesting general support; this is an actual bug report. ### Issue Description In v10.1.1 the number of recommended GDAP role memberships seems to have increased from 12 to 15 as per https://docs.cipp.app/setup/installation/recommended-roles. The GDAP Check pane seems to imply that there are still only 12. Is it checking for 15 or still 12? Steps 1. CIPP 2. Application Settings 3. Permissions 4. GDAP Check pane lists "User is a member of the 12 CIPP Recommended GDAP groups" ### Environment Type Non-sponsored user ### Front End Version v10.1.1 ### Back End Version v10.1.1 ### Relevant Logs / Stack Trace ```plaintext ```
kerem commented 2026-03-02 13:53:54 +03:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Feb 24, 2026):

Thank you for reporting a potential bug. If you would like to work on this bug, please comment:

I would like to work on this please!

Thank you for helping us maintain the project!

<!-- gh-comment-id:3955230354 --> @github-actions[bot] commented on GitHub (Feb 24, 2026): Thank you for reporting a potential bug. If you would like to work on this bug, please comment: > I would like to work on this please! Thank you for helping us maintain the project!
kerem commented 2026-03-02 13:53:54 +03:00
Author
Owner
Copy link

@joelmacklow commented on GitHub (Feb 24, 2026):

Sidepoint: It is my understanding (I could be wrong here) that if the number of roles in a GDAP Role Template are changed then a new invitation for the tenant will need to be created and approved in all existing tenants that use that template and the previous existing GDAP relationship terminated.

Documentation suggestion: Perhaps the docs for https://docs.cipp.app/setup/installation/recommended-roles should clarify the above?

<!-- gh-comment-id:3955249230 --> @joelmacklow commented on GitHub (Feb 24, 2026): Sidepoint: It is my understanding (I could be wrong here) that if the number of roles in a GDAP Role Template are changed then a new invitation for the tenant will need to be created and approved in all existing tenants that use that template and the previous existing GDAP relationship terminated. Documentation suggestion: Perhaps the docs for https://docs.cipp.app/setup/installation/recommended-roles should clarify the above?
kerem commented 2026-03-02 13:53:54 +03:00
Author
Owner
Copy link

@CW-ZacR commented on GitHub (Feb 25, 2026):

I would like to work on this please!

<!-- gh-comment-id:3956801199 --> @CW-ZacR commented on GitHub (Feb 25, 2026): I would like to work on this please!
kerem commented 2026-03-02 13:53:54 +03:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Feb 25, 2026):

Great! I assigned you (@CW-ZacR) to the issue. Have fun working on it!

<!-- gh-comment-id:3956802074 --> @github-actions[bot] commented on GitHub (Feb 25, 2026): Great! I assigned you (@CW-ZacR) to the issue. Have fun working on it!
kerem commented 2026-03-02 13:53:54 +03:00
Author
Owner
Copy link

@CW-ZacR commented on GitHub (Feb 25, 2026):

Sidepoint: It is my understanding (I could be wrong here) that if the number of roles in a GDAP Role Template are changed then a new invitation for the tenant will need to be created and approved in all existing tenants that use that template and the previous existing GDAP relationship terminated.

Documentation suggestion: Perhaps the docs for https://docs.cipp.app/setup/installation/recommended-roles should clarify the above?

if the relationship contains the required roles (including new ones) then it'll be updated with your new GDAP permissions mapping. If the relationship does not contain the new roles you will need to do a new GDAP invite for those customers who have not got it. no easy way around it. Yes, it would also be best to remove the old ones as well once you have the new one established.

<!-- gh-comment-id:3956812396 --> @CW-ZacR commented on GitHub (Feb 25, 2026): > Sidepoint: It is my understanding (I could be wrong here) that if the number of roles in a GDAP Role Template are changed then a new invitation for the tenant will need to be created and approved in all existing tenants that use that template and the previous existing GDAP relationship terminated. > > Documentation suggestion: Perhaps the docs for https://docs.cipp.app/setup/installation/recommended-roles should clarify the above? if the relationship contains the required roles (including new ones) then it'll be updated with your new GDAP permissions mapping. If the relationship does not contain the new roles you will need to do a new GDAP invite for those customers who have not got it. no easy way around it. Yes, it would also be best to remove the old ones as well once you have the new one established.
kerem commented 2026-03-02 13:53:54 +03:00
Author
Owner
Copy link

@Zacgoose commented on GitHub (Feb 25, 2026):

wrong account, should be this one haha

<!-- gh-comment-id:3956869226 --> @Zacgoose commented on GitHub (Feb 25, 2026): wrong account, should be this one haha
kerem commented 2026-03-02 13:53:54 +03:00
Author
Owner
Copy link

@Zacgoose commented on GitHub (Feb 25, 2026):

I would like to work on this please!

<!-- gh-comment-id:3956869521 --> @Zacgoose commented on GitHub (Feb 25, 2026): I would like to work on this please!
kerem commented 2026-03-02 13:53:55 +03:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Feb 25, 2026):

Sorry, can't help you here. This issue already has a volunteer.

<!-- gh-comment-id:3956869837 --> @github-actions[bot] commented on GitHub (Feb 25, 2026): Sorry, can't help you here. This issue already has a volunteer.
kerem commented 2026-03-02 13:53:55 +03:00
Author
Owner
Copy link

@KelvinTegelaar commented on GitHub (Feb 25, 2026):

Fixed in dev

<!-- gh-comment-id:3959084873 --> @KelvinTegelaar commented on GitHub (Feb 25, 2026): Fixed in dev
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
dev
docs
dependabot/npm_and_yarn/dev/uiw/react-json-view-2.0.0-alpha.42
dependabot/npm_and_yarn/dev/tanstack/react-query-persist-client-5.96.2
dependabot/npm_and_yarn/dev/mui-tiptap-1.30.0
dependabot/npm_and_yarn/dev/tanstack/react-query-devtools-5.96.2
dependabot/npm_and_yarn/dev/recharts-3.8.1
dependabot/github_actions/dev/actions/setup-node-6.4.0
copilot/add-alert-for-report-only-ca
release/beta
release/nightly
docs-maintenance
v10.4.0
v10.3.0
v10.2.0
v10.1.0
v10.0.0
v8.8.0
v8.7.0
v8.6.0
v8.5.0
v8.4.0
v8.3.0
v8.2.0
v8.1.0
v8.0.0
v7.5.0
v7.4.0
v7.3.0
v7.2.0
v7.1.0
v7.0.1
v6.4.0
v6.3.0
v6.2.0
v6.1.0
v6.0.0
v5.9.0
v5.8.5
v5.8.0
v5.7.0
v5.6.0
v5.5.0
v5.4.0
v5.3.0
v5.2.0
v5.1.0
v5.0.0
v4.9.0
v4.8.0
v4.7.0
v.4.6.0
v4.5.0
v4.4.0
v4.3.0
v4.2.0
v4.1.0
v4.0.0
v3.8.0
v3.7.0
v3.6.0
v3.5.0
v3.4.0
v3.3.0
v3.2.0
v3.1.0
v3.0.0
v2.20.0
v2.19.0
v2.18.0
v2.17.0
v2.16.0
v2.15.0
v2.13.0
v2.12.0
v2.11.2
v2.1.11.0
v.2.10.0
v2.9.0
v2.8.0
v2.7.0
v2.6.0
v2.5.5
v2.5.0
v2.4.0
v.2.3.0
v2.2.0
v2.1.2
v2.1.1
v2.1.0
v2.0.1
2.0.0
v1.5.1
v1.5.0
v1.4.3
v1.4.2
v1.4.0
v1.3.0
v1.2.1
v1.2.0
1.1.0
release
Labels
Clear labels   
API

   
Feature

   
NotABug

   
NotABug

   
Planned

   
Sponsor Priority

   
Sponsor Priority

   
bug

   
documentation

   
duplicate

   
enhancement

   
needs more info

   
no-activity

   
no-priority

   
not-assigned

   
pull-request

Mirrored from GitHub Pull Request

  
react-conversion

   
react-conversion

   
roadmap

   
security

   
stale

   
unconfirmed-by-user

   
unconfirmed-by-user

   
wontfix
No labels
API
Feature
NotABug
NotABug
Planned
Sponsor Priority
Sponsor Priority
bug
documentation
duplicate
enhancement
needs more info
no-activity
no-priority
not-assigned
pull-request
react-conversion
react-conversion
roadmap
security
stale
unconfirmed-by-user
unconfirmed-by-user
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/CIPP#2631
No description provided.