From b6cd213560c999b601d7bc1d0b0e7c9331cb53f1 Mon Sep 17 00:00:00 2001
From: Dominik Polakovics <dominik.polakovics@cloonar.com>
Date: Tue, 3 Mar 2026 21:53:53 +0100
Subject: [PATCH] feat: matrix better handling for oidc users

---
 hosts/fw/modules/web/matrix.nix | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/hosts/fw/modules/web/matrix.nix b/hosts/fw/modules/web/matrix.nix
index ecd94be..39507dc 100644
--- a/hosts/fw/modules/web/matrix.nix
+++ b/hosts/fw/modules/web/matrix.nix
@@ -149,15 +149,17 @@ in {
             client_secret: "$CLIENT_SECRET"
             token_endpoint_auth_method: client_secret_post
             scope: "openid email profile"
+            fetch_userinfo: true
             claims_imports:
+              skip_confirmation: true
               localpart:
-                action: force
-                template: "{{ user.email | split('@') | first }}"
+                action: require
+                template: "{{ user.email | replace('@cloonar.com', ''') | replace('@', '_') }}"
               displayname:
-                action: suggest
+                action: force
                 template: "{{ user.name }}"
               email:
-                action: force
+                action: require
                 template: "{{ user.email }}"
                 set_email_verification: always