Custom authenticator and authenticator factory for custom login page

Hello all,

I need to implement a custom login with a third parameter such as Organizational or Company that will be stored (after successful login) in a token or as a user property to be accessible from within the application. At this point I modified the login.ftl file:

Have someone any idea what should be the next step? Is custom authenticator a good approach?

Have you considered a user attribute? I’m assuming Organizational Unit is a department and not an Organization that requires a new Realm.

To do this in the current version, add an “organizationalUnit” to the Realm Settings > User Profile

Set the attribute in the User screen

Then, add a Mapper to the dedicated client scope

This will show up in the top level of the Access Token where your app can apply the org unit logic