OIDC: Option for Username instead of Email

[57194]

It would be nice if one could configure it so when logging in with OIDC is reads the username field rather than email field.

Edit: Biggest reason is if my OIDC users want to share their bookmarks, they'd be able to do that without sharing their email address with the world (or just other users if not sharing publicly).

[57194]

linkding/siteroot/settings/base.py

Line 208 in fbc97a3

OIDC_USERNAME_ALGO = "bookmarks.utils.generate_username"

linkding/bookmarks/utils.py

Lines 117 to 123 in fbc97a3

	def generate_username(email):
	# taken from mozilla-django-oidc docs :)
	# Using Python 3 and Django 1.11+, usernames can contain alphanumeric
	# (ascii and unicode), _, @, +, . and - characters. So we normalize
	# it and slice at 150 characters.
	return unicodedata.normalize("NFKC", email)[:150]

I don't understand how the email parameter is being passed at all, but my proposal is basically an additional config option, like OIDC_USERNAME_CLAIM or something that takes a string with the desired scope. If unset, the default should of course be email for the current behavior.

---

Authelia, for instance, offers a lot of claim options:

  "claims_supported": [
    "amr",
    "aud",
    "azp",
    "client_id",
    "exp",
    "iat",
    "iss",
    "jti",
    "rat",
    "sub",
    "auth_time",
    "nonce",
    "email",
    "email_verified",
    "alt_emails",
    "groups",
    "preferred_username",
    "name"
  ],

[sissbruecker]

This seems the relevant documentation: https://mozilla-django-oidc.readthedocs.io/en/stable/installation.html#changing-how-django-users-are-created