vincentchalamon
diff --git a/‎src/Symfony/Component/Security/Http/AccessToken/Oidc/OidcUserInfoTokenHandler.php
Copy file name to clipboardExpand all lines: src/Symfony/Component/Security/Http/AccessToken/Oidc/OidcUserInfoTokenHandler.php
+8-7Lines changed: 8 additions & 7 deletions b/‎src/Symfony/Component/Security/Http/AccessToken/Oidc/OidcUserInfoTokenHandler.php
Copy file name to clipboardExpand all lines: src/Symfony/Component/Security/Http/AccessToken/Oidc/OidcUserInfoTokenHandler.php
+8-7Lines changed: 8 additions & 7 deletions
diff --git a/‎src/Symfony/Component/Security/Http/Tests/AccessToken/Oidc/OidcUserInfoTokenHandlerTest.php
Copy file name to clipboardExpand all lines: src/Symfony/Component/Security/Http/Tests/AccessToken/Oidc/OidcUserInfoTokenHandlerTest.php
+3-2Lines changed: 3 additions & 2 deletions b/‎src/Symfony/Component/Security/Http/Tests/AccessToken/Oidc/OidcUserInfoTokenHandlerTest.php
Copy file name to clipboardExpand all lines: src/Symfony/Component/Security/Http/Tests/AccessToken/Oidc/OidcUserInfoTokenHandlerTest.php
+3-2Lines changed: 3 additions & 2 deletions
@@ -15,6 +15,7 @@
 use Symfony\Component\Security\Core\Exception\BadCredentialsException;
 use Symfony\Component\Security\Http\AccessToken\AccessTokenHandlerInterface;
 use Symfony\Component\Security\Http\AccessToken\Oidc\Exception\InvalidOidcUserException;
+use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
 use Symfony\Contracts\HttpClient\HttpClientInterface;
 
 /**
@@ -25,27 +26,27 @@
 final class OidcUserInfoTokenHandler implements AccessTokenHandlerInterface
 {
     public function __construct(
-        private HttpClientInterface $oidcClient,
-        private ?LoggerInterface $logger = null,
-        private string $claim = 'sub',
-        private string $userinfoUrl = 'protocol/openid-connect/userinfo'
+        private HttpClientInterface $client,
+        private ?LoggerInterface    $logger = null,
+        private string              $claim = 'sub',
+        private string              $userinfoUrl = 'protocol/openid-connect/userinfo'
     ) {
     }
 
-    public function getUserIdentifierFrom(string $accessToken): string
+    public function getUserBadgeFrom(string $accessToken): UserBadge
     {
         try {
             // Call the OIDC server to retrieve the user info
             // If the token is invalid or expired, the OIDC server will return an error
-            $userinfo = $this->oidcClient->request('GET', $this->userinfoUrl, [
+            $userinfo = $this->client->request('GET', $this->userinfoUrl, [
                 'auth_bearer' => $accessToken,
             ])->toArray();
 
             if (empty($userinfo[$this->claim])) {
                 throw new InvalidOidcUserException(sprintf('"%s" property not found on OIDC server response.', $this->claim));
             }
 
-            return (string) $userinfo[$this->claim];
+            return new UserBadge($userinfo[$this->claim]);
         } catch (\Throwable $e) {
             $this->logger?->error('An error occurred on OIDC server.', [
                 'error' => $e->getMessage(),
 
@@ -15,6 +15,7 @@
 use Psr\Log\LoggerInterface;
 use Symfony\Component\Security\Core\Exception\BadCredentialsException;
 use Symfony\Component\Security\Http\AccessToken\Oidc\OidcUserInfoTokenHandler;
+use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
 use Symfony\Contracts\HttpClient\HttpClientInterface;
 use Symfony\Contracts\HttpClient\ResponseInterface;
 
@@ -38,7 +39,7 @@ public function testGetsUserIdentifierFromOidcServerResponse(string $claim): voi
             ->willReturn($responseMock);
 
         $handler = new OidcUserInfoTokenHandler($clientMock, null, $claim);
-        $this->assertSame((string) $response[$claim], $handler->getUserIdentifierFrom('a-secret-token'));
+        $this->assertEquals(new UserBadge($response[$claim]), $handler->getUserBadgeFrom('a-secret-token'));
     }
 
     public function getClaims(): iterable
@@ -69,6 +70,6 @@ public function testThrowsAnExceptionIfUserPropertyIsMissing(): void
             ->method('error');
 
         $handler = new OidcUserInfoTokenHandler($clientMock, $loggerMock);
-        $handler->getUserIdentifierFrom('a-secret-token');
+        $handler->getUserBadgeFrom('a-secret-token');
     }
 }