OpenId Connect 与 wso2 仅返回子声明 [英] OpenId Connect with wso2 returns only sub claim

问题描述

当我询问用户 WSO2 的信息时，响应中只包含他的子用户.

When I ask the information of the user WSO2, the response contains only his sub.

Request GET https://srv-wso2.domain.com:9443/oauth2/userinfo?schema=openid
Request headers {Accept=[application/json, application/*+json], Authorization=[Bearer 50ff3e7940248bdc01e2c1d33de77537], Content-Length=[0]}
Response body {"sub":"RECIF/arnaud@carbon.super"}

在 repository/conf/identity/identity.xml 文件中，OpenIdConnect 被配置为使用http://wso2.org/claims 作为 UserInfoEndpointClaimDialect.

In repository/conf/identity/identity.xml file, OpenIdConnect is configured to use http://wso2.org/claims as UserInfoEndpointClaimDialect.

我使用 Active Directory 作为用户存储.在声明配置中，一些映射应该像 displayName 或 givenName 或 fullname 一样被命中.

I use an Active Directory as user store. And in claims configuration, some mappings should be hit like displayName or givenName or fullname.

有什么想法吗?

playground2 应用程序也有同样的问题.我使用 WSO2 5.1.0

I have the same problems with the playground2 application. I use WSO2 5.1.0

推荐答案

有一个打开的bug:https://wso2.org/jira/browse/IDENTITY-4250 并提出了拉取请求:https://github.com/wso2/carbon-identity/pull/1677

There is an opened bug: https://wso2.org/jira/browse/IDENTITY-4250 and a pull request has made: https://github.com/wso2/carbon-identity/pull/1677

这篇关于OpenId Connect 与 wso2 仅返回子声明的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！