providers/scim: change familyName default (#7904)

* Update providers-scim.yaml Signed-off-by: Antoine <antoine+github@jiveoff.fr> * fix: add formatted to match the givenName & familyName Signed-off-by: Antoine <antoine+github@jiveoff.fr> * fix, update tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Antoine <antoine+github@jiveoff.fr> Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Antoine <antoine+github@jiveoff.fr>
2023-12-18 16:52:34 +01:00
parent 1a21af0361
commit ba174d810b
3 changed files with 22 additions and 20 deletions
--- a/authentik/providers/scim/tests/test_membership.py
+++ b/authentik/providers/scim/tests/test_membership.py
@ -93,7 +93,7 @@ class SCIMMembershipTests(TestCase):
                    "emails": [],
                    "active": True,
                    "externalId": user.uid,
-                    "name": {"familyName": "", "formatted": "", "givenName": ""},
+                    "name": {"familyName": " ", "formatted": " ", "givenName": ""},
                    "displayName": "",
                    "userName": user.username,
                },
@ -184,7 +184,7 @@ class SCIMMembershipTests(TestCase):
                    "displayName": "",
                    "emails": [],
                    "externalId": user.uid,
-                    "name": {"familyName": "", "formatted": "", "givenName": ""},
+                    "name": {"familyName": " ", "formatted": " ", "givenName": ""},
                    "userName": user.username,
                },
            )
--- a/authentik/providers/scim/tests/test_user.py
+++ b/authentik/providers/scim/tests/test_user.py
@ -57,7 +57,7 @@ class SCIMUserTests(TestCase):
        uid = generate_id()
        user = User.objects.create(
            username=uid,
-            name=uid,
+            name=f"{uid} {uid}",
            email=f"{uid}@goauthentik.io",
        )
        self.assertEqual(mock.call_count, 2)
@ -77,11 +77,11 @@ class SCIMUserTests(TestCase):
                ],
                "externalId": user.uid,
                "name": {
-                    "familyName": "",
-                    "formatted": uid,
+                    "familyName": uid,
+                    "formatted": f"{uid} {uid}",
                    "givenName": uid,
                },
-                "displayName": uid,
+                "displayName": f"{uid} {uid}",
                "userName": uid,
            },
        )
@ -110,7 +110,7 @@ class SCIMUserTests(TestCase):
        uid = generate_id()
        user = User.objects.create(
            username=uid,
-            name=uid,
+            name=f"{uid} {uid}",
            email=f"{uid}@goauthentik.io",
        )
        self.assertEqual(mock.call_count, 2)
@ -131,11 +131,11 @@ class SCIMUserTests(TestCase):
                        "value": f"{uid}@goauthentik.io",
                    }
                ],
-                "displayName": uid,
+                "displayName": f"{uid} {uid}",
                "externalId": user.uid,
                "name": {
-                    "familyName": "",
-                    "formatted": uid,
+                    "familyName": uid,
+                    "formatted": f"{uid} {uid}",
                    "givenName": uid,
                },
                "userName": uid,
@ -166,7 +166,7 @@ class SCIMUserTests(TestCase):
        uid = generate_id()
        user = User.objects.create(
            username=uid,
-            name=uid,
+            name=f"{uid} {uid}",
            email=f"{uid}@goauthentik.io",
        )
        self.assertEqual(mock.call_count, 2)
@ -186,11 +186,11 @@ class SCIMUserTests(TestCase):
                ],
                "externalId": user.uid,
                "name": {
-                    "familyName": "",
-                    "formatted": uid,
+                    "familyName": uid,
+                    "formatted": f"{uid} {uid}",
                    "givenName": uid,
                },
-                "displayName": uid,
+                "displayName": f"{uid} {uid}",
                "userName": uid,
            },
        )
@ -230,7 +230,7 @@ class SCIMUserTests(TestCase):
        )
        user = User.objects.create(
            username=uid,
-            name=uid,
+            name=f"{uid} {uid}",
            email=f"{uid}@goauthentik.io",
        )

@ -254,11 +254,11 @@ class SCIMUserTests(TestCase):
                ],
                "externalId": user.uid,
                "name": {
-                    "familyName": "",
-                    "formatted": uid,
+                    "familyName": uid,
+                    "formatted": f"{uid} {uid}",
                    "givenName": uid,
                },
-                "displayName": uid,
+                "displayName": f"{uid} {uid}",
                "userName": uid,
            },
        )
--- a/blueprints/system/providers-scim.yaml
+++ b/blueprints/system/providers-scim.yaml
@ -11,13 +11,15 @@ entries:
      name: "authentik default SCIM Mapping: User"
      expression: |
        # Some implementations require givenName and familyName to be set
-        givenName, familyName = request.user.name, ""
+        givenName, familyName = request.user.name, " "
+        formatted = request.user.name + " "
        # This default sets givenName to the name before the first space
        # and the remainder as family name
        # if the user's name has no space the givenName is the entire name
        # (this might cause issues with some SCIM implementations)
        if " " in request.user.name:
            givenName, _, familyName = request.user.name.partition(" ")
+            formatted = request.user.name

        # photos supports URLs to images, however authentik might return data URIs
        avatar = request.user.avatar
@ -39,7 +41,7 @@ entries:
        return {
            "userName": request.user.username,
            "name": {
-                "formatted": request.user.name,
+                "formatted": formatted,
                "givenName": givenName,
                "familyName": familyName,
            },