[mitreid-connect] Custom claims
Justin Richer
jricher at mit.edu
Fri Oct 23 10:15:48 EDT 2015
You just need to have a custom introspection result assembler. You have access to the original request parameters from the OAuth authorization object. Take a look at the current class t to see how it's done there.
-- Justin
/ Sent from my phone /
-------- Original message --------
From: Luiz Omori <luiz.omori at duke.edu>
Date: 10/23/2015 10:05 AM (GMT-05:00)
To: mitreid-connect at mit.edu
Subject: [mitreid-connect] Custom claims
Hi,
Is there a way to add a parameter to the Authorization Code Flow request and have it returned back via introspection? Even better if a standard way of doing that, i.e. defined in the OAuth standard. It would be great if state
was returned but I’m not getting that.
Request:
http://localhost:8080/ldap-openid-connect-server/authorize?response_type=code&client_id=growth_chart&scope=openid&redirect_uri=http://localhost:4000/index.html&state=07465f66-e4fd-4466-bcc4-5826ee7080a6&client_data=blabla&nonce=bd55e445-8d7f-4491-b48e-3458efcb829c
Introspection Info
{
"active": true,
"scope": "openid",
"expires_at": "2015-10-23T09:55:50-0400",
"exp": 1445608550,
"sub": "lro4",
"user_id": "lro4",
"client_id": "growth_chart",
"token_type": "Bearer",
"client_data": "blabla"
}
Regards,
Luiz
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/mitreid-connect/attachments/20151023/ef6360d5/attachment.html
More information about the mitreid-connect
mailing list