Hello, I will try to keep this to the point.
CAS is using the subject claim from AzureAD Delegation upon return from auth and setting it as the username regardless of the setting of: cas.authn.pac4j.oidc[0].azure.principal-attribute-id=email I can use email, upn, does not matter, it is always the subject (sub) claim from AzureAD. Even when I tried generic: cas.authn.pac4j.oidc[0].generic.principal-attribute-id=email I am getting all the way through the delegation, completing the authentication, completing the MFA on the account and returning to the app only to have the username be the subject (sub) claim. Even if I set the usernameAttributeProvider it does not change anything. Anyone have an idea of what is going on? Bill -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscr...@apereo.org. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/41fec87d-5c75-40e1-8df6-6154201c5112n%40apereo.org.
