cameleer/cameleer-server
1
0
Fork 0
Code Issues 44 Pull Requests Actions Packages Projects Releases Wiki Activity

feat: add User ID Claim field to OIDC admin config UI
Some checks failed
CI / cleanup-branch (push) Has been skipped
Details
CI / build (push) Successful in 1m5s
Details
CI / deploy (push) Has been cancelled
Details
CI / deploy-feature (push) Has been cancelled
Details
CI / docker (push) Has been cancelled
Details

Browse Source 
New input in the Claim Mapping section lets admins configure which
id_token claim is used as the unique user identifier (default: sub).

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
hsiegeln
2026-04-06 10:19:38 +02:00
parent a96cf2afed
commit 0c77f8d594
2 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ui/src/api/schema.d.ts vendored
View File

@@ -1444,6 +1444,7 @@ export interface components {
defaultRoles?: string[]; defaultRoles?: string[];
autoSignup?: boolean; autoSignup?: boolean;
displayNameClaim?: string; displayNameClaim?: string;
userIdClaim?: string;
}; };
/** @description Error response */ /** @description Error response */
ErrorResponse: { ErrorResponse: {
@@ -1460,6 +1461,7 @@ export interface components {
defaultRoles?: string[]; defaultRoles?: string[];
autoSignup?: boolean; autoSignup?: boolean;
displayNameClaim?: string; displayNameClaim?: string;
userIdClaim?: string;
}; };
UpdateGroupRequest: { UpdateGroupRequest: {
name?: string; name?: string;

10
ui/src/pages/Admin/OidcConfigPage.tsx
View File

@@ -14,6 +14,7 @@ interface OidcFormData {
clientSecret: string; clientSecret: string;
rolesClaim: string; rolesClaim: string;
displayNameClaim: string; displayNameClaim: string;
userIdClaim: string;
defaultRoles: string[]; defaultRoles: string[];
} }
@@ -25,6 +26,7 @@ const EMPTY_CONFIG: OidcFormData = {
clientSecret: '', clientSecret: '',
rolesClaim: 'roles', rolesClaim: 'roles',
displayNameClaim: 'name', displayNameClaim: 'name',
userIdClaim: 'sub',
defaultRoles: ['VIEWER'], defaultRoles: ['VIEWER'],
}; };
@@ -47,6 +49,7 @@ export default function OidcConfigPage() {
clientSecret: data.clientSecret ?? '', clientSecret: data.clientSecret ?? '',
rolesClaim: data.rolesClaim ?? 'roles', rolesClaim: data.rolesClaim ?? 'roles',
displayNameClaim: data.displayNameClaim ?? 'name', displayNameClaim: data.displayNameClaim ?? 'name',
userIdClaim: data.userIdClaim ?? 'sub',
defaultRoles: data.defaultRoles ?? ['VIEWER'], defaultRoles: data.defaultRoles ?? ['VIEWER'],
})) }))
.catch(() => setForm(EMPTY_CONFIG)); .catch(() => setForm(EMPTY_CONFIG));
@@ -184,6 +187,13 @@ export default function OidcConfigPage() {
onChange={(e) => update('rolesClaim', e.target.value)} onChange={(e) => update('rolesClaim', e.target.value)}
/> />
</FormField> </FormField>
<FormField label="User ID Claim" htmlFor="userid-claim" hint="Claim used as unique user identifier (default: sub)">
<Input
id="userid-claim"
value={form.userIdClaim}
onChange={(e) => update('userIdClaim', e.target.value)}
/>
</FormField>
<FormField label="Display Name Claim" htmlFor="name-claim" hint="Claim used for user display name"> <FormField label="Display Name Claim" htmlFor="name-claim" hint="Claim used for user display name">
<Input <Input
id="name-claim" id="name-claim"