mvk-mozilla
commented
7 years ago Can I get the details about what specifically Biztera needs to do to come into compliance? Is there a document I can share with their developer? Thanks!
Closed gdestuynder closed 7 years ago
mvk-mozilla
commented
7 years ago Can I get the details about what specifically Biztera needs to do to come into compliance? Is there a document I can share with their developer? Thanks!
gdestuynder
commented
7 years ago @mvk-mozilla they refuse any OIDC claim with dots in them such as: https://sso.mozilla.com/groups = ['...']
This namespacing is required by auth0 and will soonish be enforced: https://auth0.com/docs/api-auth/tutorials/adoption/scope-custom-claims - when it is we won't be able to upgrade unless biztera handles claims with dots in them, basically.
There's no reason they wouldn't allow dots from an OIDC point of view
lucioperca
commented
7 years ago This is Zander from Biztera confirming receipt of this issue.
lucioperca
commented
7 years ago @gdestuynder @jdow @mvk-mozilla The issue should be resolved on our current build.
gdestuynder
commented
7 years ago @lucioperca awesome news and quick turn-around. I verified and this is functional thank you!
Currently, its whitelisted - biztera fails to recognize dots in the assertion and prevents login