OPENAM-2274 to DefaultLibrarySPAccountMapper has meant that NameID can't be used for the userID in the case where the Assertion has no Attributes and in auto federation mode as a result of the getIdentity() method call.
- Setup OpenAM as the SP
- Enable Auto Federation (autofedEnabled true) on the SP
- Set an Auto Federation Attribute (autofedAttribute) on the SP
- Enable Use Name ID as User ID (useNameIDAsSPUserID true) on the SP
- Have no Attributes delivered by the IDP in the Assertion
Ends in a trace like the following in the Federation debug log (reduced to the key entries):