Allow modifying federation role mappings via API
We would like to use the new role mapping feature for federated authentication to assign Atlas roles based on LDAP groups assigned to our users.
However, we frequently create new projects programmatically and would need to manage the permissions to these new projects using role mapping. However, there is no public API available to manage role mappings programmatically. In addition, enabling role mapping disables the ability to manage roles for federated users with the API. So, at present, role mappings and permissions can only be managed manually through the UI.
We would like to request the ability to modify role mappings (and possibly other federation features) through the Atlas API.
We are happy to announce that Federated Authentication Configuration can be now managed through Atlas Administration API. Please refer to API documentation for more information: https://docs.atlas.mongodb.com/reference/api/federation-configuration/
Please let us know if you have any feedbacks.
Carlos Benito commented
any update about this feature? In My case from my organization it doesnt make senses, you can manage all permissions and access from your AAD, wich one you can automatizate with a pipeline and a script and terraform or ansible later for creating a project and cluster, but the creation of a role mapping must be manually!!!
Please we need this feature or some workaround ASAP!!!