How to use GitHub

• Please use the 👍 reaction to show that you are interested into the same feature.
• Please don't comment if you have no relevant information to add. It's just extra noise for everyone subscribed to this issue.
• Subscribe to receive notifications on status change and new comments.

Feature request

Which Nextcloud Version are you currently using: 31.0.2

Is your feature request related to a problem? Please describe.
Our Nextcloud instance allow logins from various institutions with a SAML federation, but we want to control which users are authorized to connect so no autoprovision.

Describe the solution you'd like
We can script pre-provisionning provided there is a saml:user:add command

php occ saml:user:add uid [email protected] --display-name="new user"

Describe alternatives you've considered
Didn't find any. Since institutions in the federation are different we cannot easily add an attribute for our need. We have only our own users in LDAP. Pre-provisionning via user:add creates user in the Database backend and such users then can edit their email and displayname and we don't want that.

Additional context
I'm not a PHP developper but I've coded something that seems to work. I'm not familiar with nextcloud dev process so I will just post it below hoping someone could adapt it.