IDToken idToken = securityContext.getIdToken()
Then idToken has methods like "getName()", "getPreferredUsername()",
"getEmail()" etc. You can use just those, which are mapped as allowed Claims for
this client (You can configure claims in Keycloak admin console). Those, which are not
mapped as claims will return null.
On 10.6.2014 07:16, Conrad Winchester wrote:
I have keyclick integrated into my application and have it protecting several end points.
A user can login to get access to the protected resources by adding the bearer token into
the authorisation header.
I was wondering what the recommended way is to actually identify the user who has
authenticated. Is this the way to do it?
private SecurityContext securityContext;
KeycloakPrincipal principal =
logger.info("Logged in user: "+ principal.getName());
I noticed the the name is the ‘id’ of the user from the keycloak table.
Are there any other ways to get data from the token?
keycloak-user mailing list