1 files changed, 4 insertions, 2 deletions
diff --git a/develop/openid.html b/develop/openid.html
index 5b89003d03..23e95a8eb0 100644
--- a/develop/openid.html
+++ b/develop/openid.html
@@ -655,7 +655,7 @@ This can be optionally enabled by setting <code>backchannel_logout_enabled</code
<p>You should receive a response similar to the following. Make sure to save it.</p>
<pre><code class="language-json">{"client_id":"someclientid_123","client_secret":"someclientsecret_123","id":"12345","name":"my_synapse_app","redirect_uri":"https://[synapse_public_baseurl]/_synapse/client/oidc/callback","website":null,"vapid_key":"somerandomvapidkey_123"}
</code></pre>
-<p>As the Synapse login mechanism needs an attribute to uniquely identify users, and Mastodon's endpoint does not return a <code>sub</code> property, an alternative <code>subject_claim</code> has to be set. Your Synapse configuration should include the following:</p>
+<p>As the Synapse login mechanism needs an attribute to uniquely identify users, and Mastodon's endpoint does not return a <code>sub</code> property, an alternative <code>subject_template</code> has to be set. Your Synapse configuration should include the following:</p>
<pre><code class="language-yaml">oidc_providers:
- idp_id: my_mastodon
idp_name: "Mastodon Instance Example"
@@ -669,7 +669,9 @@ This can be optionally enabled by setting <code>backchannel_logout_enabled</code
scopes: ["read"]
user_mapping_provider:
config:
- subject_claim: "id"
+ subject_template: "{{ user.id }}"
+ localpart_template: "{{ user.username }}"
+ display_name_template: "{{ user.display_name }}"
</code></pre>
<p>Note that the fields <code>client_id</code> and <code>client_secret</code> are taken from the CURL response above.</p>
<h3 id="shibboleth-with-oidc-plugin"><a class="header" href="#shibboleth-with-oidc-plugin">Shibboleth with OIDC Plugin</a></h3>
|
