From 6488fea06ec37245d438fe8768f7d8ef2c5185de Mon Sep 17 00:00:00 2001
From: Grant Duncklee <grant.duncklee@braingu.com>
Date: Wed, 26 May 2021 17:10:49 -0400
Subject: [PATCH 1/2] docs: added mention regarding automated sso testing

---
 docs/keycloak.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docs/keycloak.md b/docs/keycloak.md
index 16ea731..ed19d61 100644
--- a/docs/keycloak.md
+++ b/docs/keycloak.md
@@ -2,6 +2,8 @@
 
 **SAML/SSO integration is a *Pro* license feature.**
 
+Nexus is a SAML client, not OIDC; the client ID must be a URL. Due to these facts it is not practical to automate SSO testing.
+
 BigBang requires/prefers SAML/SSO integration out of the box; unfortunately, the upstream Helm chart did not have a solution at the drafting of this integration. To achieve our goal, we added a Kubernetes job that handles the SAML/SSO integration as part of the NXRM Helm installation. To enable this functionality, ensure `sso.enabled` is set to `true`; you will additionally require a Keycloak instance, the IDP metadata file, along with other parameters you may define in `sso.idp_data`.
 
 Our implementation closely follows the [Sonatype SAML Integration](https://support.sonatype.com/hc/en-us/articles/1500000976522-SAML-integration-for-Nexus-Repository-Manager-Pro-3-and-Nexus-IQ-Server-with-Keycloak) documentation.
-- 
GitLab


From c7f278d0c51b318b3605999452504afc5536f1aa Mon Sep 17 00:00:00 2001
From: Grant Duncklee <grant.duncklee@braingu.com>
Date: Thu, 27 May 2021 18:02:27 -0400
Subject: [PATCH 2/2] chore: add additional comment regarding example

---
 docs/keycloak.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docs/keycloak.md b/docs/keycloak.md
index ed19d61..44836d6 100644
--- a/docs/keycloak.md
+++ b/docs/keycloak.md
@@ -4,6 +4,8 @@
 
 Nexus is a SAML client, not OIDC; the client ID must be a URL. Due to these facts it is not practical to automate SSO testing.
 
+Due to this limitation, we will not be providing a complete values example here or in bigbang.
+
 BigBang requires/prefers SAML/SSO integration out of the box; unfortunately, the upstream Helm chart did not have a solution at the drafting of this integration. To achieve our goal, we added a Kubernetes job that handles the SAML/SSO integration as part of the NXRM Helm installation. To enable this functionality, ensure `sso.enabled` is set to `true`; you will additionally require a Keycloak instance, the IDP metadata file, along with other parameters you may define in `sso.idp_data`.
 
 Our implementation closely follows the [Sonatype SAML Integration](https://support.sonatype.com/hc/en-us/articles/1500000976522-SAML-integration-for-Nexus-Repository-Manager-Pro-3-and-Nexus-IQ-Server-with-Keycloak) documentation.
-- 
GitLab