config_pac4j_provider.md

amagyar Wed, 05 Oct 2022 04:38:29 -0700

Author: amagyar
Date: Wed Oct  5 11:38:24 2022
New Revision: 1904416

URL: http://svn.apache.org/viewvc?rev=1904416&view=rev
Log:
KNOX-2816 Add missing documentations KNOX-2764


Modified:
    knox/trunk/books/2.0.0/config_pac4j_provider.md

Modified: knox/trunk/books/2.0.0/config_pac4j_provider.md
URL: 
http://svn.apache.org/viewvc/knox/trunk/books/2.0.0/config_pac4j_provider.md?rev=1904416&r1=1904415&r2=1904416&view=diff
==============================================================================
--- knox/trunk/books/2.0.0/config_pac4j_provider.md (original)
+++ knox/trunk/books/2.0.0/config_pac4j_provider.md Wed Oct  5 11:38:24 2022
@@ -121,6 +121,13 @@ For tests only, you can use a basic auth
 
 NOTE: This is NOT a secure mechanism and must NOT be used in production 
deployments.
 
+By default Knox will accept the subject of the returned UserProfile and pass 
it as the PrimaryPrincipal to the proxied service. If you want to use a 
different user attribute, you can set the UserProfile attribute name as 
configuration parameter called pac4j.id_attribute.
+
+    <param>
+      <name>pac4j.id_attribute</name>
+      <value>nickname</value>
+    </param>
+
 Otherwise, you can use Facebook, Twitter, a CAS server, a SAML IdP or an 
OpenID Connect provider by using the following parameters:
 
 ##### For OAuth support:

svn commit: r1904416 - /knox/trunk/books/2.0.0/config_pac4j_provider.md

Reply via email to