<p dir="ltr"><br>
I was going to email regarding this.</p>
<p dir="ltr">Thanks for bringing this up. We see the guid or something where it should be the username. Can this be configurable to use the email address?<br></p>
<p dir="ltr">Thanks<br>
Sam</p>
<div class="gmail_quote">On Oct 31, 2014 8:29 AM, "Bill Burke" <<a href="mailto:bburke@redhat.com">bburke@redhat.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">I'll add a flag to the adapter then. The reason is, again, pure servlet<br>
apps, like BRMS that display the principal name in their UI.<br>
<br>
On 10/31/2014 3:11 AM, Stian Thorgersen wrote:<br>
> -1<br>
><br>
> We should stick with ID as we can guarantee that it's unique (in the future).<br>
><br>
> If app starts using the username in their dbs you can end up with situations where the wrong user gets access to things he shouldn't. For example:<br>
><br>
> * If user with username userA is removed from Keycloak, then later a new user is registered as userA<br>
> * If we support changing username in the future (this is on the road-map, and IMO it makes sense to add this with a toggle in the realm to enable/disable)<br>
><br>
> What difference does it make if it's ugly? If apps wants to display details about the user they should get the profile. Sadly there's no direct support for this in Principal.<br>
><br>
> ----- Original Message -----<br>
>> From: "Bill Burke" <<a href="mailto:bburke@redhat.com">bburke@redhat.com</a>><br>
>> To: <a href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a><br>
>> Sent: Thursday, 30 October, 2014 11:29:59 PM<br>
>> Subject: [keycloak-dev] Create Principal instance with username instead?<br>
>><br>
>> Right no UserPrincipal is created in the adapters using the user id.<br>
>> For strictly pure Servlet apps, an ID is pretty ugly. I don't want to<br>
>> force them to use keycloak code.<br>
>><br>
>> So...is it ok to populate the principal name with<br>
>> accessToken.getPreferredUsername()?<br>
>><br>
>> --<br>
>> Bill Burke<br>
>> JBoss, a division of Red Hat<br>
>> <a href="http://bill.burkecentral.com" target="_blank">http://bill.burkecentral.com</a><br>
>> _______________________________________________<br>
>> keycloak-dev mailing list<br>
>> <a href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a><br>
>> <a href="https://lists.jboss.org/mailman/listinfo/keycloak-dev" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a><br>
>><br>
<br>
--<br>
Bill Burke<br>
JBoss, a division of Red Hat<br>
<a href="http://bill.burkecentral.com" target="_blank">http://bill.burkecentral.com</a><br>
_______________________________________________<br>
keycloak-dev mailing list<br>
<a href="mailto:keycloak-dev@lists.jboss.org">keycloak-dev@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-dev" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-dev</a><br>
</blockquote></div>