libre.sh/keycloak-scim
4
0
Fork 0
Code Issues 15 Pull requests Releases 1 Activity Actions

KEYCLOAK-16605 add localpart username template transformer

Browse source
This commit is contained in:
Jiri Lunacek 2020-12-12 21:45:16 +01:00 committed by Hynek Mlnařík
parent 8af4a5fc85
commit d70de48ba9
1 changed files with 12 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
services/src/main/java/org/keycloak/broker/saml/mappers/UsernameTemplateMapper.java
View file

@ -76,7 +76,8 @@ public class UsernameTemplateMapper extends AbstractIdentityProviderMapper {
property.setName(TEMPLATE); property.setName(TEMPLATE);
property.setLabel("Template"); property.setLabel("Template");
property.setHelpText("Template to use to format the username to import. Substitutions are enclosed in ${}. For example: '${ALIAS}.${NAMEID}'. ALIAS is the provider alias. NAMEID is that SAML name id assertion. ATTRIBUTE.<NAME> references a SAML attribute where name is the attribute name or friendly name. \n" property.setHelpText("Template to use to format the username to import. Substitutions are enclosed in ${}. For example: '${ALIAS}.${NAMEID}'. ALIAS is the provider alias. NAMEID is that SAML name id assertion. ATTRIBUTE.<NAME> references a SAML attribute where name is the attribute name or friendly name. \n"
+ "The substitution can be converted to upper or lower case by appending |uppercase or |lowercase to the substituted value, e.g. '${NAMEID | lowercase}"); + "The substitution can be converted to upper or lower case by appending |uppercase or |lowercase to the substituted value, e.g. '${NAMEID | lowercase} \n"
+ "Local part of email can be extracted by appending |localpart to the substituted value, e.g. ${CLAIM.email | localpart}. If \"@\" is not part of the string, this conversion leaves the substitution untouched.");
property.setType(ProviderConfigProperty.STRING_TYPE); property.setType(ProviderConfigProperty.STRING_TYPE);
property.setDefaultValue("${ALIAS}.${NAMEID}"); property.setDefaultValue("${ALIAS}.${NAMEID}");
configProperties.add(property); configProperties.add(property);
@ -92,10 +93,20 @@ public class UsernameTemplateMapper extends AbstractIdentityProviderMapper {
TRANSFORMERS.put("uppercase", String::toUpperCase); TRANSFORMERS.put("uppercase", String::toUpperCase);
TRANSFORMERS.put("lowercase", String::toLowerCase); TRANSFORMERS.put("lowercase", String::toLowerCase);
TRANSFORMERS.put("localpart", UsernameTemplateMapper::getEmailLocalPart);
} }
public static final String PROVIDER_ID = "saml-username-idp-mapper"; public static final String PROVIDER_ID = "saml-username-idp-mapper";
public static String getEmailLocalPart(String email) {
int index = email == null ? -1 : email.lastIndexOf('@');
if (index >= 0) {
return email.substring(0, index);
} else {
return email;
}
}
@Override @Override
public boolean supportsSyncMode(IdentityProviderSyncMode syncMode) { public boolean supportsSyncMode(IdentityProviderSyncMode syncMode) {
return IDENTITY_PROVIDER_SYNC_MODES.contains(syncMode); return IDENTITY_PROVIDER_SYNC_MODES.contains(syncMode);