Description
The current implementation of LoginModuleImpl always populates the AuthInfo with the userId as extracted from the Credentials or the shared state; doing so will make Session.getUserID() expose the 'login-id', which may or may not correspond to the ID of the corresponding User as it is expected to exist with this login module implementation.
While this clearly is a design decision with the LoginModuleImpl and perfectly in accordance with the API contract of Session.getUserID(), there might be cases, where equality of Session.getUserID() and User.getID() would be desirable.
So, we may think about adding an option to the default authentication; be it with LoginModuleImpl and|or the UserAuthenticationFactory|UserAuthentication.
Attachments
Issue Links
- is related to
-
OAK-5903 Authentication: add extension to retrieve user principal
- Closed