user353829
Reputation: 1434
Keycloak 'ID' as an Attribute Release to a Client
Could the ID for a user be retrieved to be sent as a SAML attribute to a Client?
Thank you.
Upvotes: 1
Views: 913
Answers (1)
dreamcrash
Reputation: 51453
I have not work with SAML before but I think that what you want can be done by:
- Go to the Realm where the client is;
- Go to the Client;
- Select Mappers;
- Click on
[Create]; - As mapper type chose
Javascript Mapper; - In the script type
user.id - Fill up the rest accordingly, and click [save];
As pointed out by @Jan Garaj in the comments:
Script for Javascript Mapper is (already/still) deprecated feature and it may be removed in the further Keycloak release.
You can use a User Property Mapper:
- Go to the Realm where the client is;
- Go to the Client;
- Select Mappers;
- Click on
[Create]; - As mapper type chose
User Property; - In the property type
id - Fill up the rest accordingly, and click [save];
Upvotes: 2
Related Questions
- specify user id when creating user in keycloak
- Difference between client-id and id of client in Keycloak
- How to get id (not clientId) of client in keycloak?
- Keycloak as IdP with own implementation of Resource Server
- Keycloak Admin CLI: setting Client Attributes
- Keycloak - read-only user attributes
- Keycloak CLI: Creating an Identity Provider Mapper
- KEYCLOAK: Client secret not provided in request
- Keycloak client id strategy for a micro service plattform
- Keycloak - Identity providers and clients