[keycloak-user] User attribute update issue when using dentity provider
Marek Posolda
mposolda at redhat.com
Thu Apr 21 17:18:10 EDT 2016
Yes, you have to configure the appropirate mapper in the "mappers" tab
in admin console. The method IdentityProviderMapper.updateBrokeredUser()
is called after each successful login of user with the identity provider.
I think you can choose one of predefined mapper implementation for
update the attribute from identity provider. I think we have the
implementations for both OIDC and SAML providers. In worst case, you can
create your own implementation of IdentityProviderMapper to do exactly
what you want. This would be still much better than delete/create user
during each login.
Marek
On 21/04/16 20:36, Xiao Ma wrote:
> Hi,
>
> I have a custom user attribute (telephone number) for the users in my
> identity provider. When this user attribute for a given user is
> updated in my identity provider,, the corresponding user attribute for
> that user in the keycloak database doesn't update automatically.
>
> I have to delete the user from keycloak database and force a user
> recreation in the next new user login (using First Broker Login
> Authentication Flow), then my updated customer attribute will show up.
> Is there a way to update user attribute automatically without a user
> recreation?
>
> Thanks a lot,
>
> Xiao
>
>
>
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160421/6224b6e9/attachment.html
More information about the keycloak-user
mailing list