You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by "Attila Magyar (Jira)" <ji...@apache.org> on 2022/06/20 13:38:00 UTC

[jira] [Commented] (KNOX-2764) Document pac4j.id_attribute usage

    [ https://issues.apache.org/jira/browse/KNOX-2764?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17556388#comment-17556388 ] 

Attila Magyar commented on KNOX-2764:
-------------------------------------

{code}
Index: trunk/books/2.0.0/config_pac4j_provider.md
===================================================================
--- trunk/books/2.0.0/config_pac4j_provider.md	(revision 1902099)
+++ trunk/books/2.0.0/config_pac4j_provider.md	(working copy)
@@ -121,6 +121,14 @@
 
 NOTE: This is NOT a secure mechanism and must NOT be used in production deployments.
 
+
+By default Knox will accept the subject of the returned UserProfile and pass it as the PrimaryPrincipal to the proxied service. If you want to use a different user attribute, you can set the UserProfile attribute name as configuration parameter called pac4j.id_attribute.
+
+    <param>
+      <name>pac4j.id_attribute</name>
+      <value>nickname</value>
+    </param>
+
 Otherwise, you can use Facebook, Twitter, a CAS server, a SAML IdP or an OpenID Connect provider by using the following parameters:
 {code}



> Document pac4j.id_attribute usage
> ---------------------------------
>
>                 Key: KNOX-2764
>                 URL: https://issues.apache.org/jira/browse/KNOX-2764
>             Project: Apache Knox
>          Issue Type: Bug
>            Reporter: Attila Magyar
>            Assignee: Attila Magyar
>            Priority: Major
>




--
This message was sent by Atlassian Jira
(v8.20.7#820007)