...
See UserInterface for a detailed look at the IdP’s view templates. This
This won't prevent a malicious user from changing the username; that would need a server-side solution, such as a post-authentication login flow (ProfileInterceptConfiguration ).
...