Coder issue with OIDC flow and AD user

We have added coder behind OIDC (keycloak). The users are added to keycloak through our azure AD. When any AD user logs in with OIDC, the username for the user at keycloak is set as the email ID of the user who logs in. For ex, Bob Smith is the AD user and his email is

bob.smith@example.com

bob.smith@example.com

bob.smith@example.com

bob.smith@example.com

. When Bob logs in with his email in the OIDC flow, the username is set as

bob.smith@example.com

bob.smith@example.com

bob.smith@example.com

bob.smith@example.com

in keycloak. Now, when Bob tries to login for the first time to coder via OIDC by typing his email(which is also the username), coder is setting the user name of Bob as

bobsmith

bobsmith

bobsmith

bobsmith

, by stripping the rest of the characters. This is causing issues when we are integrating coder into our application. Coder is expecting the user name to be

bobsmith

bobsmith

bobsmith

bobsmith

, but what our application gets from AD is

bob.smith@example.com

bob.smith@example.com

bob.smith@example.com

bob.smith@example.com

. Hence when we send the email as the username to coder API endpoints, we are getting the error as

"\"user\" must be an existing uuid or username."

"\"user\" must be an existing uuid or username."

"\"user\" must be an existing uuid or username."

"\"user\" must be an existing uuid or username."

We tried setting the below field in coder deployment so that coder can use the email as username instead. But it doesn't seem to be working.

name: CODER_OIDC_USERNAME_FIELD
value: email

Is there anything else that we can do to overcome this?

Coder issue with OIDC flow and AD user

Similar Threads

Similar Threads

Similar Threads