You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@knox.apache.org by "Attila Magyar (Jira)" <ji...@apache.org> on 2022/06/20 13:38:00 UTC
[jira] [Commented] (KNOX-2764) Document pac4j.id_attribute usage
[ https://issues.apache.org/jira/browse/KNOX-2764?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17556388#comment-17556388 ]
Attila Magyar commented on KNOX-2764:
-------------------------------------
{code}
Index: trunk/books/2.0.0/config_pac4j_provider.md
===================================================================
--- trunk/books/2.0.0/config_pac4j_provider.md (revision 1902099)
+++ trunk/books/2.0.0/config_pac4j_provider.md (working copy)
@@ -121,6 +121,14 @@
NOTE: This is NOT a secure mechanism and must NOT be used in production deployments.
+
+By default Knox will accept the subject of the returned UserProfile and pass it as the PrimaryPrincipal to the proxied service. If you want to use a different user attribute, you can set the UserProfile attribute name as configuration parameter called pac4j.id_attribute.
+
+ <param>
+ <name>pac4j.id_attribute</name>
+ <value>nickname</value>
+ </param>
+
Otherwise, you can use Facebook, Twitter, a CAS server, a SAML IdP or an OpenID Connect provider by using the following parameters:
{code}
> Document pac4j.id_attribute usage
> ---------------------------------
>
> Key: KNOX-2764
> URL: https://issues.apache.org/jira/browse/KNOX-2764
> Project: Apache Knox
> Issue Type: Bug
> Reporter: Attila Magyar
> Assignee: Attila Magyar
> Priority: Major
>
--
This message was sent by Atlassian Jira
(v8.20.7#820007)