fix(authentication-service): allow keycloak username to be an auth id…

… as well, if needed gh-0
sourcefuse · Sep 12, 2021 · e831237 · e831237
1 parent 8aab9e1
commit e831237
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/services/authentication-service/src/modules/auth/providers/keycloak-verify.provider.ts b/services/authentication-service/src/modules/auth/providers/keycloak-verify.provider.ts
@@ -66,7 +66,8 @@ export class KeycloakVerifyProvider
       if (
         !creds ||
         creds.authProvider !== 'keycloak' ||
-        creds.authId !== profile.keycloakId
+        (creds.authId !== profile.keycloakId &&
+          creds.authId !== profile.username)
       ) {
         throw new HttpErrors.Unauthorized(AuthErrorKeys.InvalidCredentials);
       }