Portal OIDC authN - read user info to fallback to the UserInfo endpoint

solo-io / gloo-portal-issues

Public tracker for issues related to Gloo Portal

https://docs.solo.io/gloo-portal/latest/

1 stars 3 forks source link

Portal OIDC authN - read user info to fallback to the UserInfo endpoint #60

Closed bcollard closed 2 years ago

bcollard commented 3 years ago

In the authentication workflow on the portal and giving the user a group, If the groups claim (or the claim name defined in the API) is missing from the returned id_token, then call the userinfo_endpoint as a fallback

Sometimes the information returned in the id_token is not enough. More claims are available through the UserInfo endpoint.

bewebi commented 2 years ago

With solo-io/dev-portal#1724 we will check UserInfo iff the groups claim is not present in the OIDC id_token

marcogschmidt commented 2 years ago

This fix has been released with Gloo Portal v1.1.0-beta2.