firebase-authentication okta okta-api google-identity google-identity-toolkit

How to get user data from okta when using it as IdP via GCP Identity Platform?

I've added okta as a SAML provider and as a OIDC provider in GCP Identity Platform (for a firebase project), and from the authentication point of view, everything works great.

When using OIDC, the user's information (displayName, photoUrl, etc.) is automatically filled.

But when using SAML, no user information appears. I've tried setting Attributes and Profile Mappings in okta, but nothing worked. Is there any way to make GCP automatically fill this data by itself?

Solution

Identity Platform will populate the IdP claims in the ID token. You can get them from the firebase.sign_in_attributes claim.

If basic profile is not populated from SAML IdPs, you can always use GCIP APIs to populate these fields. In JavaScript:

user.updateProfile({displayName: 'name', photoURL: 'photo'});

How to reconcile Firebase Auth token refreshing with Server-Side Rendering
Firebase throws "Given sign-in provider is disabled for this project" error when I try to sign up user via app but able to add user via console
Firebase Auth saving users without identifier with OIDC
Requests for referrer are blocked when trying to sign in anonymously to Firebase
Error with go_router while doing a phone auth with Firebase on iOS
Critical security vulnerability in reCAPTCHA Enterprise
Delete a specific user from Firebase
Firebase: Error (auth/operation-not-allowed) when trying to sign in with phone number in Firebase Web
Firebase Method to check whether an email is already associated with an account
Flutter Google Sign In not getting user Google name - Firestore
call method createUserWithEmailAndPassword without doing signIn
Firebase Auth, React JS, Error: "logIn is not a function"
React-Firebase: Why does page fail on first load, but then loads properly on refresh?
Firebase authentication setup in standalone Angular
Registration in Flutter using Firebase doesn't work
Unable to download "firebase/init.json" for self-hosting the sign-in helper code
Prevent unverified email to login using firebase Authentication
Firebase Authentication with Azure AD B2C
Value of type 'GIDSignIn' has no member 'clientID'
Firebase Auth: Requests from this Android client application com.xxx are blocked
React-Native: "FirebaseError: No Firebase App '[DEFAULT]' has been created - call Firebase App.initializeApp() (app/no-app)"
Cloud run: restrict traffic from firebase hosting?
How do I lock down Firebase Database to any user from a specific (email) domain?
How to listen error event of Firebase Auth Provider immediately?
Firebase token verification in PHP
redirection to the main page after logIn or registration doesn't working. firebase, private route, email authentication
Spring Boot FirebaseAuth signInWithEmailAndPassword method undefined for (String, String)
Firebase Login feature not working in deployed Next js app but works fine in local environment
Firebase Auth + Electron = failure?
How to authorize a request to the FCM v1 API with an access token