-
Type:
Bug
-
Status: Resolved
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 11.0.0, 12.0.0, 13.0.0, 13.5.0
-
Component/s: SAML
-
Labels:
The out of the box SAML IdP Attribute Mapper implementation does not map profile attributes when the user profile mode has been configured to Dynamic or Dynamic with Alias mode. Since the point of the Dynamic profile mode is to ensure that a profile gets successfully created at the time of the authentication, it would perfectly reasonable for the SAML AttributeMapper to just simply map the attributes coming from the freshly created user account (or even from the old account that was previously dynamically created).
- is duplicated by
-
OPENAM-8226 the default IdP Attribute Mapper should read attributes from data store or SSO session regardless the setting of the 'profile' property in core auth service
-
- Resolved
-