search

JanssenProject / jans

An open source enterprise digital identity platform for CIAM or workforce... Janssen is a distribution of standards-based, developer friendly, components that are engineered to work together in any cloud. #OAuth #OpenID #FIDO
https://docs.jans.io
Apache License 2.0
473 stars 75 forks source link

feat(jans-auth-server): Include org_id in the response for DCR #5787

Closed maduvena closed 1 year ago

maduvena commented 1 year ago

The response after client creation is missing org_id. It is missing only in the response, it reflects correctly in database. Can it please be included. It is useful in Agama projects where the SSA issued contains org_id

Current response HTTP 201 is :

{
  "allow_spontaneous_scopes": false,
  "application_type": "web",
  "rpt_as_jwt": false,
  "registration_client_uri": "https://account-dev.gluu.cloud/jans-auth/restv1/register?client_id=54d44b2b-edb0-4a81-ac72-8a948ce3cde7",
  "tls_client_auth_subject_dn": "",
  "run_introspection_script_before_jwt_creation": false,
  "registration_access_token": "56509aba-26c9-4832-b46e-a36fbb45d619",
  "client_id": "54d44b2b-edb0-4a81-ac72-8a948ce3cde7",
  "token_endpoint_auth_method": "client_secret_basic",
  "software_id": "passwurd-api",
  "software_statement": "eyJraWQiOiJzc2FfZDVhZmI3ZjItZjY0NS00NmI4LThlNmEtNjYyMTUzMjViODI1X3NpZ19yczI1NiIsInR5cCI6Imp3dCIsImFsZyI6IlJTMjU2In0.eyJzb2Z0d2FyZV9pZCI6InBhc3N3dXJkLWFwaSIsImdyYW50X3R5cGVzIjpbImNsaWVudF9jcmVkZW50aWFscyJdLCJvcmdfaWQiOiJnaXRodWI6bWFkdXZlbmEiLCJpc3MiOiJodHRwczovL2FjY291bnQtZGV2LmdsdXUuY2xvdWQiLCJzb2Z0d2FyZV9yb2xlcyI6WyJwYXNzd3VyZCIsInN1cGVyZ2x1dSIsImxpY2Vuc2UiLCJhZ2FtYV9kZXBsb3kiXSwiZXhwIjoxNjkzNTAwNTgxLCJpYXQiOjE2ODc1MzkwNjEsImp0aSI6IjU0NjQ1NzFiLTkxMWMtNDc5NS1iNzliLTc1ZTA0MzNkZGU4NSJ9.qJxrCCiyQTvxLsTdyUfxaXXwAABvz6YA4kkANRcSvgMYKVf_831ojoPYo1D4VKSY0_G1dQzibTT_fF8Ib4kbGE_-xdprVMcWHfa4HAzdDp_8djV0QJAM4g4DU5SSkQV_d0tJYjU4f3TX-tUxzo1ao1uOSoA9JhOI1l_XuoEHR_anp4fjbHHOxAaQnJvapqNKMONAiPBhf_vN408hQvsqRlje7WHeEXHRitdTjGW-Bhc-6iE0GsTy2KUWupty7-HRZoHKvXgyal0pa0oQ6rt5Hzr2jB6jc1J5RpOQu6teglcJXpQMVSTWSVn7-_eaLZyqKDmNet7E8u3lEj1BfBZQ0g",
  "scope": "https://api.gluu.org/auth/scopes/scan.passwurd https://api.gluu.org/auth/scopes/scan.supergluu https://jans.io/oauth/jans-auth-server/config/adminui/license.readonly",
  "client_secret": "334ac25a-3b0d-4530-a066-12b8446f7fda",
  "client_id_issued_at": 1691151082,
  "backchannel_logout_uri": [],
  "backchannel_logout_session_required": false,
  "client_name": "account-dev.gluu.cloud",
  "par_lifetime": 600,
  "spontaneous_scopes": [],
  "id_token_signed_response_alg": "RS256",
  "access_token_as_jwt": true,
  "grant_types": [
    "client_credentials"
  ],
  "subject_type": "pairwise",
  "additional_token_endpoint_auth_methods": [],
  "keep_client_authorization_after_expiration": false,
  "require_par": false,
  "redirect_uris": [
    "https://account-dev.gluu.cloud/.well-known/openid-configuration"
  ],
  "redirect_uris_regex": "",
  "additional_audience": [],
  "frontchannel_logout_session_required": false,
  "client_secret_expires_at": 1691755882,
  "access_token_signing_alg": "RS256",
  "response_types": [
    "code"
  ]
}
yuriyz commented 1 year ago

Yes, it can be added to standard response. Between, you can add org_id to response also via ClientRegistrationType custom script, see modifyPostResponse which allow to modify response if needed.