fix(oidc): parse right claims for GitHub authentication #1720
Conversation
|
I have resolved the conflicts from the other merged PR. |
Before this change the authentication via GitHub always errored out within getProfileNameFromEmail because the rune list had a zero length, after my investigation I have been able to pin it down to a lacking email address fetched from the GitHub provider. Since there are various claims like the username, email and fullname which aren't part of the generated claims I have added a switch to properly read all relevant information from the right claims within the GitHub provider. This commit is still lacking proper error display on the login page, but this should be added on another commit in general.
|
Hi @tboerger , |
|
Discussing of the same issue: https://stackoverflow.com/questions/35373995/github-user-email-is-null-despite-useremail-scope |
|
But at least for me it was not only missing the email but also the username and fullname, that's why I have started this PR. But since my email doesn't get populated I guess I got to enable it within github. |
|
Closing the PR because I fixed issue with auth via GitHub (when email inavailable): 989be6d |
|
Thanks for your PR because I get |
|
Great that this had fixed the GitHub authentication, but are these values expected if I register on Semaphore Cloud?
|
Before this change the authentication via GitHub always errored out within getProfileNameFromEmail because the rune list had a zero length, after my investigation I have been able to pin it down to a lacking email address fetched from the GitHub provider.
Since there are various claims like the username, email and fullname which aren't part of the generated claims I have added a switch to properly read all relevant information from the right claims within the GitHub provider.
This commit is still lacking proper error display on the login page, but this should be added on another commit in general.