OpenId Connect 与 wso2 仅返回子声明 [英] OpenId Connect with wso2 returns only sub claim
问题描述
当我询问用户 WSO2 的信息时,响应中只包含他的子用户.
When I ask the information of the user WSO2, the response contains only his sub.
Request GET https://srv-wso2.domain.com:9443/oauth2/userinfo?schema=openid
Request headers {Accept=[application/json, application/*+json], Authorization=[Bearer 50ff3e7940248bdc01e2c1d33de77537], Content-Length=[0]}
Response body {"sub":"RECIF/arnaud@carbon.super"}
在 repository/conf/identity/identity.xml 文件中,OpenIdConnect 被配置为使用http://wso2.org/claims 作为 UserInfoEndpointClaimDialect.
In repository/conf/identity/identity.xml file, OpenIdConnect is configured to use http://wso2.org/claims as UserInfoEndpointClaimDialect.
我使用 Active Directory 作为用户存储.在声明配置中,一些映射应该像 displayName 或 givenName 或 fullname 一样被命中.
I use an Active Directory as user store. And in claims configuration, some mappings should be hit like displayName or givenName or fullname.
有什么想法吗?
playground2 应用程序也有同样的问题.我使用 WSO2 5.1.0
I have the same problems with the playground2 application. I use WSO2 5.1.0
推荐答案
有一个打开的bug:https://wso2.org/jira/browse/IDENTITY-4250 并提出了拉取请求:https://github.com/wso2/carbon-identity/pull/1677
There is an opened bug: https://wso2.org/jira/browse/IDENTITY-4250 and a pull request has made: https://github.com/wso2/carbon-identity/pull/1677
这篇关于OpenId Connect 与 wso2 仅返回子声明的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!