LDAP user mapper for username: user appears twice in the GUI #24141
Description
EDITs in bold.
Before reporting an issue
- I have searched existing issues
- I have reproduced the issue with the latest nightly release
Area
identity-brokering
Describe the bug
I am using the LDAP user federation with Kerberos authentication.
I have set an LDAP user attribute mapper for the username attribute:
I map the ldap samaccountname to a "myattribute" custom keycloak attribute.
Then I edit the keycloak username attribute
Motivation:
I am using the LDAP user federation with Kerberos authentication.
I want to be able to have nicer usernames in keycloak that are different from ldap (... which I do not control). I tried different ways, however most seem to break the kerberos auth.
However the above seemed to work - with the quirk mentioned above.
Version
22.0.1
Expected behavior
User found once in keycloak backend user serach
Actual behavior
User is listed twice in keycloak backend user search, both having the same user id.
How to Reproduce?
I have set an LDAP user attribute mapper for the username attribute:
I map the ldap samaccountname to a "myattribute" custom keycloak attribute.
I edit a username to differ from the ldap username.
Anything else?
No response