[mitreid-connect] Injecting custom fields in the token endpoint response

Luiz Omori luiz.omori at duke.edu
Tue Jun 13 13:10:39 EDT 2017 

I see. We may put the server behind an API Manager (Kong). I wonder if we could, and would be easier, manipulate the token endpoint response there.

Regards,
Luiz

From: Justin Richer <jricher at mit.edu>
Date: Tuesday, June 13, 2017 at 12:41 PM
To: Luiz Omori <luiz.omori at duke.edu>
Cc: "mitreid-connect at mit.edu" <mitreid-connect at mit.edu>
Subject: Re: [mitreid-connect] Injecting custom fields in the token endpoint response

It’s hard to do with the current library dependencies, and we haven’t had the time or opportunity to pull out the offending library (it’s in there deep). You’d need a custom token granter to create a token with an “additional info” field with your extra bits in it. These aren’t currently persisted to the database, so you might also need a custom token class.

The “right” solution is pulling out the Spring Security OAuth library and rewriting those parts of the server, but that’s a big project.

 — Justin

On Jun 13, 2017, at 12:05 PM, Luiz Omori <luiz.omori at duke.edu<mailto:luiz.omori at duke.edu>> wrote:

Hi,

Our project has an external requirement that calls for injecting some custom fields with the token endpoint response, along with the access_token, id_token, etc. These fields are going to be populated with information from an extended UserInfo class. Any suggestions for how to accomplish that using an overlay?

The SMART on FHIR project had a similar requirement but I believe they ended up forking and overriding a class in the server code.

Regards,
Luiz
_______________________________________________
mitreid-connect mailing list
mitreid-connect at mit.edu<mailto:mitreid-connect at mit.edu>
http://mailman.mit.edu/mailman/listinfo/mitreid-connect<https://urldefense.proofpoint.com/v2/url?u=http-3A__mailman.mit.edu_mailman_listinfo_mitreid-2Dconnect&d=DwMFaQ&c=imBPVzF25OnBgGmVOlcsiEgHoG1i6YHLR0Sj_gZ4adc&r=R6m41WT3w_KtulQAsSIxc_C2mwuKoWSycEMpss0QQJA&m=0I1FGIydy5j_S7ij0t4UMe83husguaoHX1GHr0xUVQg&s=3rmJOk_cfD9CVe8-bxUlmVgw3KDTkEM18_P7ulgwUhs&e=>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/mitreid-connect/attachments/20170613/0ad8fe09/attachment-0001.html

More information about the mitreid-connect mailing list