[keycloak-user] User attributes in ID Token using protocol mappers

Bill Burke bburke at redhat.com
Tue May 5 11:15:31 EDT 2015


There is a UserProperty mapper and a UserAttribute mapper.  Use the 
"UserAttribute" mapper.  Maybe that's it?  UserProperty is looks for get 
methods on UserModel.  Meh, this as probably a bad idea.  Should 
probably have just combined them.

On 5/5/2015 10:38 AM, Kalinga Dissanayake wrote:
> Is it possible to return a user attribute in the ID token using protocol
> mappers?
>
> I have a user that has a custom attribute called "accountId" and a value
> is assigned to it. I checked in the USER_ATTRIBUTE table (mysql) and the
> values are properly assigned.
>
> I created a protocol mapper. In that I set the protocol type as "User
> Attribute" and entered the key "accountId" as both the User Attribute
> and Token Claim Name and switched on both "Add to ID Token" and "Add to
> Access Token".
>
> I simply cant get this accountID attribute value returned in the ID
> Token nor Access Token.
>
> Basically I need to return the user attributes in the ID Token / Access
> Token. Is it possible?
>
> Regards*,*
>
> Kalinga
>
>
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>

-- 
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com


More information about the keycloak-user mailing list