keycloak-scim/server_admin/topics/identity-broker/session-data.adoc


=== Available User Session Data

After a user logs in from the external IDP, there's some additional user session note data that {project_name} stores that you can access.
This data can be propagated to the client requesting a login via the token or SAML assertion being passed back to it by using an appropriate client mapper.

identity_provider::
  This is the IDP alias of the broker used to perform the login.

identity_provider_identity::
  This is the IDP username of the currently authenticated user. This is often same like the {project_name} username, but doesn't necessarily needs to be.
  For example {project_name} user `john` can be linked to the Facebook user `john123@gmail.com`, so in that case value of user session note will be `john123@gmail.com` .

You can use a <<_protocol-mappers, Protocol Mapper>> of type `User Session Note` to propagate this information to your clients.
broker 2016-05-27 15:23:34 +00:00
google 2016-05-26 16:09:04 +00:00			`=== Available User Session Data`

Convert documentation to AsciiDoctor 2017-08-28 12:50:14 +00:00			`After a user logs in from the external IDP, there's some additional user session note data that {project_name} stores that you can access.`
google 2016-05-26 16:09:04 +00:00			`This data can be propagated to the client requesting a login via the token or SAML assertion being passed back to it by using an appropriate client mapper.`

KEYCLOAK-3689 Update identityProvider docs about session data 2016-12-02 10:19:45 +00:00			`identity_provider::`
google 2016-05-26 16:09:04 +00:00			`This is the IDP alias of the broker used to perform the login.`

KEYCLOAK-3689 Update identityProvider docs about session data 2016-12-02 10:19:45 +00:00			`identity_provider_identity::`
Convert documentation to AsciiDoctor 2017-08-28 12:50:14 +00:00			`This is the IDP username of the currently authenticated user. This is often same like the {project_name} username, but doesn't necessarily needs to be.`
			For example {project_name} user `john` can be linked to the Facebook user `john123@gmail.com`, so in that case value of user session note will be `john123@gmail.com` .
KEYCLOAK-3689 Update identityProvider docs about session data 2016-12-02 10:19:45 +00:00
Convert documentation to AsciiDoctor 2017-08-28 12:50:14 +00:00			You can use a <<_protocol-mappers, Protocol Mapper>> of type `User Session Note` to propagate this information to your clients.
broker 2016-05-27 15:23:34 +00:00