[keycloak-user] Missing custom attributes from migrated users

luis.villaca at petrobras.com.br luis.villaca at petrobras.com.br
Wed Jun 26 17:03:43 EDT 2019



Greetings,

I do not see the custom attributes from users created in Realm A, migrated
to Realm B.

I have configured in Realm A, using it for SSO, a user federation that
validates the credentials and fetches user data from a service (via a
custom UserStorageProvider), and populates a Keycloak user with name,
e-mail, and some corporate attributes like division (setting
singleAttributes from UserModel).

Then in realm B I have an Identity Provider that points to a Broker in
Realm A. In "first login flow" I have a custom Authentication flow, with
two execution steps:
- Create User If Unique
- Automatically Link Brokered Account

This allows me to automatically migrate this user to my realm.

So login from realm B ends in authentication in realm A, which pulls a user
according to our service. Then the process migrates user data to realm B -
but as I inspect this user I see e-mail, name (first & last) but I cannot
see my custom attributes.

Any hints?

Thanks,
Luis 
"O emitente desta mensagem é responsável por seu conteúdo e endereçamento. Cabe ao destinatário cuidar quanto ao tratamento adequado. Sem a devida autorização, a divulgação, a reprodução, a distribuição ou qualquer outra ação em desconformidade com as normas internas do Sistema Petrobras são proibidas e passíveis de sanção disciplinar, cível e criminal."
 
"The sender of this message is responsible for its content and addressing. The receiver shall take proper care of it. Without due authorization, the publication, reproduction, distribution or the performance of  any other action not conforming to Petrobras System internal policies and procedures is forbidden and liable to disciplinary, civil or criminal sanctions."
 
"El emisor de este mensaje es responsable por su contenido y direccionamiento. Cabe al destinatario darle el tratamiento adecuado. Sin la debida autorización, su divulgación, reproducción, distribución o cualquier otra acción no conforme a las normas internas del Sistema Petrobras están prohibidas y serán pasibles de sanción disciplinaria, civil y penal."


More information about the keycloak-user mailing list