Sending Username/emailid in the saml req as NameID to Keycloak
Question
We have a requirement to send Username/EmailId in the Subject/NameID field to the keycloak. Keycloak then receive that value in a custom authenticator and send it to the tokenvalidator for further flow. The idea here is to omit the step to ask user name from user again.
- In Keycloak I am not able to see NameID value since keycloak is not putting this in the client session. why?
- I can see that keycloak is parsing the Subject/Name ID field. How can I get this value in my custom Autheticator ?
Please let me know your suggestions and ideas
1 answers
solution1
0 2016-10-17 13:01:04
Looks like this is an issue in the existing keycloak code. created the issue and sent a pull request.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
WSO2 APIM Identity responds back username or domain/username in the NameID of a SAML SSO response
SAML2 email address as NameId is discourage to use
SAML 2 extensions in AuthnRequest (Keycloak)
SAML 2.0 - Authenticating a user from a custom Attribute instead of NameId
Keycloak w/Google Authentication - Invalid username or password
Keycloak admin console - invalid username or password
How to map third party IdP SAML attributes to my local application roles using keycloak-saml adapter
MERN - TypeError: Cannot destructure property 'username' of 'req.body' as it is undefined
Keycloak login form - default Security Key with Username&Password as alternative
Twilio is not sending creds in headers when specifying username:password format in the URL
Related Tags