Cloudreve icon indicating copy to clipboard operation
Cloudreve copied to clipboard
verified publisher icon cloudreve

OIDC (Microsoft Entra ID): Email shown as [email protected] after configuring per tutorial

Open KKazuhaK opened this issue 2 months ago • 3 comments

Describe the bug When configuring Microsoft Entra ID (Azure AD) as the OIDC provider following the official Cloudreve tutorial, the user’s Email on the Profile page appears as [email protected] (e.g., [email protected]) instead of a normal email-like value.

According to the docs, Cloudreve obtains user information from the UserInfo endpoint and supports mapping user attributes; the expected behavior is that a usable email value is shown rather than a fallback.

To Reproduce

  • Configure OIDC with Microsoft Entra ID strictly following the official Cloudreve tutorial/documentation.
  • Sign in via “Sign in with Microsoft.”
  • Open the Profile page.
  • Observe the Email field value.

Expected behavior After configuration per the tutorial, the Profile page should display a normal email-like value for Email (not a fallback).

Screenshots Image

Additional context I tested Google Workspace(Google Cloud Platform) works well.

KKazuhaK avatar Oct 25 '25 00:10 KKazuhaK

I cannot reproduce it.

If it's not sensitive, do you mind creating an test AAD App for me to test? You can create one with redirect URL (http://localhost:5173/callback/openid/2), and send client ID/secret/tenant ID to [email protected]

HFO4 avatar Oct 28 '25 02:10 HFO4

I cannot reproduce it.

If it's not sensitive, do you mind creating an test AAD App for me to test? You can create one with redirect URL (http://localhost:5173/callback/openid/2), and send client ID/secret/tenant ID to [email protected]

Sorry, I misunderstood it. Normally we use UPN(UserPrincipalName) as the login credentials and normally UPN is the user's email. But in Entra ID email is sperate as UPN. Is there a way to map the UPN to an email to resolve this issue?

KKazuhaK avatar Oct 28 '25 04:10 KKazuhaK

I cannot reproduce it. If it's not sensitive, do you mind creating an test AAD App for me to test? You can create one with redirect URL (http://localhost:5173/callback/openid/2), and send client ID/secret/tenant ID to [email protected]

Sorry, I misunderstood it. Normally we use UPN(UserPrincipalName) as the login credentials and normally UPN is the user's email. But in Entra ID email is sperate as UPN. Is there a way to map the UPN to an email to resolve this issue?

https://docs.cloudreve.org/en/usage/oidc#custom-user-info-mapping.

YUDONGLING avatar Oct 28 '25 05:10 YUDONGLING