Re: [keycloak-user] Recommended way to identify user from token
IDToken idToken = securityContext.getIdToken()
Then idToken has methods like "getName()", "getPreferredUsername()",
"getEmail()" etc. You can use just those, which are mapped as allowed Claims for
this client (You can configure claims in Keycloak admin console). Those, which are not
mapped as claims will return null.
Marek
On 10.6.2014 07:16, Conrad Winchester wrote:
Hi,
I have keyclick integrated into my application and have it protecting several end points.
A user can login to get access to the protected resources by adding the bearer token into
the authorisation header.
I was wondering what the recommended way is to actually identify the user who has
authenticated. Is this the way to do it?
@Context
private SecurityContext securityContext;
.
.
.
KeycloakPrincipal principal =
(KeycloakPrincipal)securityContext.getUserPrincipal();
logger.info("Logged in user: "+ principal.getName());
I noticed the the name is the ‘id’ of the user from the keycloak table.
Are there any other ways to get data from the token?
Thanks
Conrad
_______________________________________________
keycloak-user mailing list
keycloak-user(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user