Menu
▾
▴
Re: [Unity-idm-discuss] confirm email address in input translation profile
|
From: Krzysztof B. <kb...@un...> - 2020-12-01 12:37:53
|
Hi Sander, W dniu 01.12.2020 o 08:26, Sander Apweiler pisze: > Dear Krzysztof, > > we have connected our instance to an OIDC IdP. This IdP releases email > and email_verified attributes. Currently we map only the email: > > Condition: true > Action: mapAttribute > Action parameters: > unityAttribute = email > group = / > expression = attr['email'] > effect = CREATE_OR_UPDATE > > Can we "map" the email_verified information too? We want to skip the > verification in case this is already done by the IdP. The condition > part is no problem, but how can we set the information to email > attribute? Sure, you can. See https://www.unity-idm.eu/documentation/unity-3.4.0/manual.html#_e_mail_confirmations, section 7.4.4 precisely. You would need to add the "[CONFIRMED]" suffix basing on the email_verified attribute, sth. like attr['email'] + (attr['email_verified'] == 'true' ? '[CONFIRMED]' : '') - you should be able to fine tune that depending on types, whether this email_verified is always present or optional etc. Cheers, Krzysztof |
