Details
-
Suggestion
-
Resolution: Unresolved
-
None
-
None
Description
Summary
Currently, Crowd will fill SAML response XML with original username, not an alias. The only way to get alias as NameId assertion in SAML response is to configure aliasing not only per the generic application that will consume SAML response but also per Crowd application. Unfortunately, this is a global change and will affect all applications connected to Crowd. This caused admin having some limitation on integrating Crowd with other application.
Suggestion
An alias should be send in SAML response instead of an original username when there's aliasing enabled for the application.