dex/connector/oidc at 6d41541964c5e87e2150a4c10d4c77658bccaad7 - mystiq/dex

mystiq/dex

Archived

This repository has been archived on 2022-08-17. You can view files and clone it, but cannot push or open issues or pull requests.

History

Thomas Jackson 512cb3169e Run getUserInfo prior to claim enforcement If you have an oidc connector configured and that IDP provides thin tokens (e.g. okta) then the majority of the requested claims come in the getUserInfo call (such as email_verified). So if getUserInfo is configured it should be run before claims are validated.	2019-09-13 11:10:44 -07:00
..
oidc.go	Run getUserInfo prior to claim enforcement	2019-09-13 11:10:44 -07:00
oidc_test.go	make userName configurable	2019-06-03 14:09:07 +02:00

Thomas Jackson 512cb3169e Run getUserInfo prior to claim enforcement

If you have an oidc connector configured *and* that IDP provides thin
tokens (e.g. okta) then the majority of the requested claims come in the
getUserInfo call (such as email_verified). So if getUserInfo is
configured it should be run before claims are validated.

2019-09-13 11:10:44 -07:00

oidc.go

Run getUserInfo prior to claim enforcement

2019-09-13 11:10:44 -07:00

oidc_test.go

make userName configurable

2019-06-03 14:09:07 +02:00