diff options
| author | MatMaul <MatMaul@users.noreply.github.com> | 2023-05-15 09:18:24 +0000 |
|---|---|---|
| committer | MatMaul <MatMaul@users.noreply.github.com> | 2023-05-15 09:18:24 +0000 |
| commit | b95eb6dee8f84f4c6eb366301d73c3b89622db2c (patch) | |
| tree | e7cfc64db999026bccabffb93df9dc6e4cee2a94 /develop/print.html | |
| parent | deploy: 2611433b70fc30c436f6b9b950a3bcc533b3df5b (diff) | |
| download | synapse-b95eb6dee8f84f4c6eb366301d73c3b89622db2c.tar.xz | |
deploy: aa5c0592e72e7ef8c015208e9947b385e6a87e59
Diffstat (limited to 'develop/print.html')
| -rw-r--r-- | develop/print.html | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/develop/print.html b/develop/print.html index 292e4c58fc..6e4bf95dcb 100644 --- a/develop/print.html +++ b/develop/print.html @@ -8235,7 +8235,7 @@ This can be optionally enabled by setting <code>backchannel_logout_enabled</code <p>You should receive a response similar to the following. Make sure to save it.</p> <pre><code class="language-json">{"client_id":"someclientid_123","client_secret":"someclientsecret_123","id":"12345","name":"my_synapse_app","redirect_uri":"https://[synapse_public_baseurl]/_synapse/client/oidc/callback","website":null,"vapid_key":"somerandomvapidkey_123"} </code></pre> -<p>As the Synapse login mechanism needs an attribute to uniquely identify users, and Mastodon's endpoint does not return a <code>sub</code> property, an alternative <code>subject_claim</code> has to be set. Your Synapse configuration should include the following:</p> +<p>As the Synapse login mechanism needs an attribute to uniquely identify users, and Mastodon's endpoint does not return a <code>sub</code> property, an alternative <code>subject_template</code> has to be set. Your Synapse configuration should include the following:</p> <pre><code class="language-yaml">oidc_providers: - idp_id: my_mastodon idp_name: "Mastodon Instance Example" @@ -8249,7 +8249,9 @@ This can be optionally enabled by setting <code>backchannel_logout_enabled</code scopes: ["read"] user_mapping_provider: config: - subject_claim: "id" + subject_template: "{{ user.id }}" + localpart_template: "{{ user.username }}" + display_name_template: "{{ user.display_name }}" </code></pre> <p>Note that the fields <code>client_id</code> and <code>client_secret</code> are taken from the CURL response above.</p> <h3 id="shibboleth-with-oidc-plugin"><a class="header" href="#shibboleth-with-oidc-plugin">Shibboleth with OIDC Plugin</a></h3> |