biwerr

Thanks, for fixing this in the next release. But your workaround seems to be for Azure AD and not a self hosted ADFS

This is our portainer oauth config. The Userendpoint only returns "sub" as mentioned above. We have enabled the scopes in our ADFS Server. 

Updated to 2.14, but still issues to get email as username. Still working with `sub` but not with `email`, `name` or `upn` ``` PS C:\Users\administrator.mydomain> (Get-AdfsApplicationGroup Portainer).Applications ADUserPrincipalName : ClientSecret...

Yes I set the GranTypes as mentioned in your Documentation - [Get Started With This Library](http://bshaffer.github.io/oauth2-server-php-docs/) - [Bootstrap your OAuth2 Server](http://bshaffer.github.io/oauth2-server-php-docs/cookbook/) ``` $storage = new OAuth2\Storage\Pdo(DB::connection()->getPdo()); $server = new OAuth2\Server($storage,Config::get("oauth2.config"));...

I had the same issue, but it was my fault. I forget to add the openId grant type to the server $server->addGrantType(new OAuth2\OpenID\GrantType\AuthorizationCode($storage));