[mitreid-connect] Injecting custom fields in the token endpoint response
Justin Richer
jricher at mit.edu
Tue Jun 13 12:41:57 EDT 2017
It’s hard to do with the current library dependencies, and we haven’t had the time or opportunity to pull out the offending library (it’s in there deep). You’d need a custom token granter to create a token with an “additional info” field with your extra bits in it. These aren’t currently persisted to the database, so you might also need a custom token class.
The “right” solution is pulling out the Spring Security OAuth library and rewriting those parts of the server, but that’s a big project.
— Justin
> On Jun 13, 2017, at 12:05 PM, Luiz Omori <luiz.omori at duke.edu> wrote:
>
> Hi,
>
> Our project has an external requirement that calls for injecting some custom fields with the token endpoint response, along with the access_token, id_token, etc. These fields are going to be populated with information from an extended UserInfo class. Any suggestions for how to accomplish that using an overlay?
>
> The SMART on FHIR project had a similar requirement but I believe they ended up forking and overriding a class in the server code.
>
> Regards,
> Luiz
> _______________________________________________
> mitreid-connect mailing list
> mitreid-connect at mit.edu <mailto:mitreid-connect at mit.edu>
> http://mailman.mit.edu/mailman/listinfo/mitreid-connect <http://mailman.mit.edu/mailman/listinfo/mitreid-connect>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/mitreid-connect/attachments/20170613/ea2085a1/attachment.html
More information about the mitreid-connect
mailing list