When configuring Openshift console with OIDC authentication, the user is successfully authenticated by Okta and redirected to Openshift console. After successful authentication the user is added automatically under User Management > Users (in Openshift console).
The trouble now is: user’s name is mapped with app.clientId.
I want user’s name (in Openshift) to be the user’s email used for login to Okta.
This is my Okta configuration:
#Claims for default Authorization Server:
Name: sub (appuser != null) ? appuser.userName : app.clientId (default)
Name: preferred_username (appuser != null) ? appuser.userName : user.email (added)
Name: email (appuser != null) ? appuser.userName : user.email (added)
#User Profile Mappings for Openshift application:
Okta User Profile : Openshift application User Profile
user.email : userName
user.email : email
#Users assigned to Openshift application have both User Name and Email filled with email address.
This is my Openshift configuration:
#Openshift Custom Resource:
- mappingMethod: claim
Cannot understand why the User in Openshift is mapped with the claim sub.