Comments (15)
@jjbohn @cmrd-senya @rdingwell Any idea?
from omniauth-openid-connect.
have you tried it with the email and profile scopes added in
from omniauth-openid-connect.
I originally had email in there, but either one of those I get an invalid_scope error.
from omniauth-openid-connect.
Hi,
Which scope values does your provider support?
Generally it follows the specification, but the value returned by the scope value depends on the provider.
http://openid.net/specs/openid-connect-core-1_0.html#ScopeClaims
from omniauth-openid-connect.
There was a mixup, and they just added the :email scope. However, when I add that in, I get the same thing, a user info hash full of nil's.
from omniauth-openid-connect.
Could you check the extra.raw_info
? There is raw data in it.
from omniauth-openid-connect.
That is empty as well.
from omniauth-openid-connect.
If so, it seems that empty data is returned from the provider.
ummm, Does the provider support scope values such as email
, profile
?
from omniauth-openid-connect.
Just email
On Nov 11, 2016 6:10 PM, "Tomoya Usami" [email protected] wrote:
If so, it seems that empty data is returned from the provider.
ummm, Does the provider support scope values such as email, profile?—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub
#66 (comment),
or mute the thread
https://github.com/notifications/unsubscribe-auth/AEz9ikMpgluNV81wqiY6oPHqNTEXZFWnks5q9PXKgaJpZM4KwFvx
.
from omniauth-openid-connect.
Could you get the response you requested with curl
command?
$ curl -H "Authorization: Bearer ${YOUR_ACCESS_TOKEN}" ${USERINFO_ENDOPONT}
from omniauth-openid-connect.
Ok, I'm told that I need to take my id_token, split it by ".", decode each element of the array (3 elements) into Base64, and then decrypt the 3rd element. The first element should contain data indicating Type of Token=JWT, Algorithm=RSA256, a thumbprint, and keyId, while it looks like the 2nd element contains the data. Is this what the gem is doing (i.e., does sound correct)?
from omniauth-openid-connect.
Verified that the 2nd element looks like it has username, email, etc. the data that I'm looking for. However, when userinfo!
is called on the AccessToken in OpenIDConnect, the get
call returns an empty hash. I verified that it's setting the access token as the bearer authorization code. I suspect this could is an issue on the provider side?
from omniauth-openid-connect.
Do you mean that id_token
(2nd element) returned by the provider contains information such as username, email address, etc.?
from omniauth-openid-connect.
I suspect this could is an issue on the provider side?
I think so too.
from omniauth-openid-connect.
Verified it was an issue on the provider end, thanks for the help.
from omniauth-openid-connect.
Related Issues (20)
- acr_values defined as options but not passed HOT 1
- Discovery broken when the Provider returns a set of JWKs
- Verification failed if client signing algorithm is string
- UserInfo response subject must be verified HOT 1
- Option to disable SSL verification HOT 5
- Getting 401 Unauthorized on callback HOT 14
- Update openid_connect version and push a release? HOT 5
- 422 Unprocessable Entity error retrieving token with `can't verify CSRF authenticity`
- How to merge custom parameter in authorize url
- Install gem on Rails 5 HOT 1
- After sign in with keycloak
- undefined method `auth_code' for #<OpenIDConnect::Client:0x00007fdc02c03f60> HOT 1
- undefined method `alias_method_chain' for Rack::OAuth2::Server::Authorize::Request:Class
- Invalid JSON Format HOT 2
- 404 page gitlab omniauth openid_connect HOT 1
- Execution Expired inside gem.
- allow multiple redirect_uri
- Please refer to the upgraded repository HOT 1
- RubyGems project name?
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from omniauth-openid-connect.