You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Great work and thanks for sharing these great oauth with the community.
I'm struggling with a problem and I'm not shure if this is configuration specific issue or a bug. I got oAuth & Authentification agains frontend-user working.
Doing the call to /oauth2/userinfo works as well, but it gives me only {"sub": 10} (FE-User uid). In the client record I configured the following allowed_scopes: profile, email, openid.
So I would expect these scope/grants are respected. But for some reason the $scopes in UserinfoController are an empty array missing all the grants from client-record.
Is this a bug in UserinfoController or a misconfiguration?
The text was updated successfully, but these errors were encountered:
As far as I know the underlying library respects the scopes submitted in the token. These scopes must be requested already in very beginning of the authorization flow.
At least in my local setup the endpoint returns the data from the fe_user.
Maybe enable debug logs gives you a better insight:
Great work and thanks for sharing these great oauth with the community.
I'm struggling with a problem and I'm not shure if this is configuration specific issue or a bug. I got oAuth & Authentification agains frontend-user working.
Doing the call to /oauth2/userinfo works as well, but it gives me only
{"sub": 10}
(FE-User uid). In the client record I configured the following allowed_scopes: profile, email, openid.So I would expect these scope/grants are respected. But for some reason the $scopes in UserinfoController are an empty array missing all the grants from client-record.
Is this a bug in UserinfoController or a misconfiguration?
The text was updated successfully, but these errors were encountered: