Do not use Azure AD display name as username #213
Comments
|
Can you share your code or (better) provide a PR? We're planning to deploy our own hub on Azure and we'll surely need this fix. |
|
I open an issue regarding this behavior of using the AD display name as username. In short, jupyterhub is not allowing to autheticate users because the display name contain an illegal char "/" |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
While using the AzureAdOAuthenticator to authenticate with Oauth to the Azure AD provider, the property "name" from the requested JWT token is used as username in JupyterHub. According to the Azure AD documentation:
It is therefore not reliable as a username (not unique, can contain spaces and special chars...)
I suggest using the object id instead, which is exactly the common unix username max size (32 chars long after removing the dashes in guid)
This is what I am doing currently in a project by overriding the behaviour in a inherited class, but it should probably be applied in future versions by default.
The text was updated successfully, but these errors were encountered: