Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-127093

Configured default NameID Format does not translate to portal user ID type correctly

    Details

      Description

      When the IDP does not send a NameID Format in its assertion, the one configured on the IDP connection is used instead to map to an appropriate portal user ID type (screenName or emailAddress currently).

      However the mapping does not take place as expected. Instead the selected SAML NameID Format is preserved.

      There is however no direct impact because the importUser() method checks this using String.endsWith() and by chance the SAML NameID Format for emailAddress matches this condition. Also, screenName is used for any other format.

      But we should fix it because it makes the code fragile.

        Attachments

          Activity

            People

            Assignee:
            gabor.lovas Gábor Lovas
            Reporter:
            stian.sigvartsen Stian Sigvartsen
            Participants of an Issue:
            Recent user:
            Jason Pince
            Engineering Assignee:
            Marta Medio
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:
              Days since last comment:
              13 weeks ago

                Packages

                Version Package
                7.3.X
                7.3.6 CE GA7
                Master