Usernames from Azure Active Directory oauth2 provider are stripped

We are using azure_oauth2 provider, but usernames are stripped. We are using John.Doe@example.com format, but seems that "web_url": "https://gitlab.foobar/John.Doe@example.com" would not work then, so thats why usernames are stripped afaik.

It would be a just enough to adjust personal namespace name and do not strip username attribute, because a lot of other applications depends on this attribute, which is in this case wrong.

Or is possible to include also for example full_username attribute ?

curl https://gitlab.foobar/api/v4/users?username=John.Doe will output:

[
  {
    "id": 2,
    "name": "Doe John",
    "username": "John.Doe",
    "state": "active",
    "avatar_url": "https://secure.gravatar.com/avatar/1b8fbf352e1eaca8881ad1ea487445e5?s=80&d=identicon",
    "web_url": "https://gitlab.foobar/John.Doe"
  }
]

az ad user show --upn-or-object-id John.Doe@example.com --query userPrincipalName -o tsv will output:

John.Doe@example.com

Edited Jul 07, 2025 by 🤖 GitLab Bot 🤖