Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[gateway] remove useless id_token claims #6674

Closed
leleueri opened this issue Dec 3, 2021 · 0 comments
Closed

[gateway] remove useless id_token claims #6674

leleueri opened this issue Dec 3, 2021 · 0 comments
Labels
project: AM type: bug
Milestone
AM - 3.10.10

Comments

@leleueri
Copy link
Contributor

leleueri commented Dec 3, 2021
edited by tcompiegne

When Single Sign Out is enabled, the technical claims op_id_token is provided in the AM id_token.

How to reproduce

  1. create a domain
  2. create Azure AD IDP
  3. create an app with Azure AD enable and Single SIgn Out
  4. Sign in to the domain
  5. look at the id_token the op_id_token is present
  6. Also If we try to logout with id_token_hint parameter, the Azure logout fails. (probably due to the size of the id_token_hint)
@leleueri leleueri added this to the AM - 3.10.10 milestone Dec 3, 2021
@leleueri leleueri changed the title [gateway] remove useless id_token claims [gateway][jdbc] remove useless id_token claims Dec 3, 2021
leleueri added a commit to gravitee-io/gravitee-access-management that referenced this issue Dec 3, 2021
@leleueri
fix: apply a filter on technical claims during id_token generation
8de4e50 
fixes gravitee-io/issues#6674
@leleueri leleueri mentioned this issue Dec 3, 2021
Merged
@tcompiegne tcompiegne changed the title [gateway][jdbc] remove useless id_token claims [gateway] remove useless id_token claims Dec 6, 2021
tcompiegne pushed a commit to gravitee-io/gravitee-access-management that referenced this issue Dec 6, 2021
@leleueri @tcompiegne
fix: apply a filter on technical claims during id_token generation
16155d0 
fixes gravitee-io/issues#6674
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
project: AM type: bug
Projects
None yet
Milestone
AM - 3.10.10
Development

No branches or pull requests
2 participants
@tcompiegne @leleueri