Open andrefmarques opened 3 months ago
@andrefmarques , please confirm that the login flow works.
have you tried βnestedβ injections? https://docs.authcrunch.com/docs/authorize/headers#nested-data-source
Yes, I can login and access the links configured.
I haven't tried nested injections since the fields are not appearing in whoami's userinfo
I haven't tried nested injections since the fields are not appearing in whoami's userinfo
@andrefmarques , please try configuring the following and see whether it propagates.
inject header "X-Org-Prop-A" from "organization_properties|testpropertyorg|v"
I've tried with
authorization policy partners {
allow roles any
crypto key verify {env.SHARED_KEY}
validate bearer header
inject headers with claims
inject header "X-Org-Prop-A" from "organization_properties|testpropertyorg|v"
}
And it's not propagating
@andrefmarques , I suggest you somehow bring these props to userinfo
field. Otherwise, it will not work out of the box.
Any tips to find out why fields such as org_codes
are not appearing in userinfo
?
Hi! I'm testing Kinde, and I've configured authcrunch and Kinde to successfully login.
However I'm facing 2 issues:
The first one is that the roles are only available on the access token. I've confirmed with their team that this is the case. Is there any way to configure the service to read them from the access token instead of the id token?
The second is that custom fields are not appearing on the /whoami page. The id token retrieved from logs:
The output in /whoami:
I was expecting to see the fields
org_codes
,organization_properties
,organizations
anduser_properties
since I'm usingextract all from userinfo
in the Caddyfile:I'm using ghcr.io/authcrunch/authcrunch:v1.0.11. Let me know if I can provide more information. Thank you!