Open
Description
Describe the bug
Basically when using a resource "keycloak_custom_identity_provider_mapper", if you pass an extra config for nameformat, it gets ignored, I can't set basic/uri/unspecified.
Version
26.2.0
Expected behavior
I expected it to set the Name Format with the value provided, and the UI would reflect that.
Actual behavior
It gets "ignored" and keeps what is set currently via UI.
How to Reproduce?
You can
# Not related I think, but kept here for the example to be reproducible
resource "keycloak_saml_identity_provider" "auth" {
realm = "master"
alias = "example"
display_name = "Example"
enabled = true
entity_id = "example"
name_id_policy_format = "Email"
single_sign_on_service_url = "https://example.com"
single_logout_service_url = "https://example.com"
post_binding_logout = true
post_binding_response = true
post_binding_authn_request = true
force_authn = false
hide_on_login_page = true
backchannel_supported = false
}
resource "keycloak_custom_identity_provider_mapper" "email" {
name = "email"
realm = "master"
identity_provider_alias = keycloak_saml_identity_provider.auth.alias
identity_provider_mapper = "saml-user-attribute-idp-mapper"
extra_config = {
"attribute.name" = "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
"user.attribute" = "email"
# this nameformat here is what's being ignored. I tried "uri", "uri reference", "unspecified", multiple things.
"attribute.nameformat" = "urn:oasis:names:tc:SAML:2.0:attrname-format:uri"
# --------
}
}Try to run this Terraform, it will create the resources correctly, but fail to apply the Name Format, which will be Basic instead of URI.
Anything else?
No response
Metadata
Metadata
Assignees
Labels
No labels