[prev in list] [next in list] [prev in thread] [next in thread]
List: wsf-c-dev
Subject: [Dev] [IS] Using email as the user id for an OpenID Federated Authenticator instead of the sub field
From: Supun Nakandala <supun.nakandala () gmail ! com>
Date: 2016-07-29 18:33:05
Message-ID: CAFwzmVAuxYXtW22FDTBdnNRYNsY0x62sDHqQ6OQcf9vVd53Knw () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Hi devs,
I am trying to integrate CILogon OIDC (http://www.cilogon.org/oidc) as a
federated authenticator in WSO2 IS.
The returned claims from CILogon has sub, email, first_name, last_name etc
and the format of the sub field is http://cilogon.org/serverA/users/30781.
I also use JIT provisioning with the CILogon federated authenticator and
the there are two problems that I am facing
1. The created user account has the user id as /
cilogon.org/serverA/users/30781 with 'http:/' part chopped off.
2. Even if I set email field as the UserID claim in claim configuration for
the Identity Provider it is still using the returned subject field in the
user id (with 'http:/' part chopped off)
Any advice on how to fix this issue ?
-Supun
[Attachment #5 (text/html)]
<div dir="ltr">Hi devs,<div><br></div><div>I am trying to integrate CILogon OIDC (<a \
href="http://www.cilogon.org/oidc">http://www.cilogon.org/oidc</a>) as a federated \
authenticator in WSO2 IS.</div><div><br></div><div>The returned claims from CILogon \
has sub, email, first_name, last_name etc and the format of the sub field is \
http:/<span style="color:rgb(17,17,17);font-family:"lucida \
grande","lucida sans","microsoft sans serif","lucida \
sans unicode",verdana,sans-serif,"trebuchet \
ms";font-size:12px;line-height:15px">/<a \
href="http://cilogon.org/serverA/users/30781">cilogon.org/serverA/users/30781</a>. \
</span></div><div><font color="#111111" face="lucida grande, lucida sans, microsoft \
sans serif, lucida sans unicode, verdana, sans-serif, trebuchet ms"><span \
style="font-size:12px;line-height:15px"><br></span></font></div><div><font \
color="#111111" face="lucida grande, lucida sans, microsoft sans serif, lucida sans \
unicode, verdana, sans-serif, trebuchet ms"><span \
style="font-size:12px;line-height:15px">I also use JIT provisioning with the CILogon \
federated authenticator and the there are two problems that I am \
facing</span></font></div><div><font color="#111111" face="lucida grande, lucida \
sans, microsoft sans serif, lucida sans unicode, verdana, sans-serif, trebuchet \
ms"><span style="font-size:12px;line-height:15px"><br></span></font></div><div><font \
color="#111111" face="lucida grande, lucida sans, microsoft sans serif, lucida sans \
unicode, verdana, sans-serif, trebuchet ms"><span \
style="font-size:12px;line-height:15px">1. The created user account has the user id \
as </span></font><span style="color:rgb(17,17,17);font-family:"lucida \
grande","lucida sans","microsoft sans serif","lucida \
sans unicode",verdana,sans-serif,"trebuchet \
ms";font-size:12px;line-height:15px">/<a \
href="http://cilogon.org/serverA/users/30781">cilogon.org/serverA/users/30781</a> \
with 'http:/' part chopped off.</span></div><div><font color="#111111" \
face="lucida grande, lucida sans, microsoft sans serif, lucida sans unicode, verdana, \
sans-serif, trebuchet ms"><span \
style="font-size:12px;line-height:15px"><br></span></font></div><div><font \
color="#111111" face="lucida grande, lucida sans, microsoft sans serif, lucida sans \
unicode, verdana, sans-serif, trebuchet ms"><span \
style="font-size:12px;line-height:15px">2. Even if I set email field as the UserID \
claim in claim configuration for the Identity Provider it is still using the returned \
subject field in the user id (with 'http:/' part chopped off)<br \
clear="all"></span></font><div><br></div><div>Any advice on how to fix this issue \
?</div><div><br></div> </div><div>-Supun</div></div>
_______________________________________________
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic