[cas-user] Re: OIDC configure claimes attributes

Tue, 15 Oct 2024 17:32:41 -0700 

I have the same issue 
Le mercredi 16 octobre 2024 à 00:27:43 UTC, Papa Amadou Baba NDIAYE a 
écrit :

> Hello i want to add somes attributes for my OIDC token but i always have 
> blank {} for attributes
> WHO: us...@exemple.com
> WHAT: {service=https://moodle.exemple.com/auth/oidc/, attributes={}, id=
> us...@exemple.com, scopes=[email, openid, profile], client_id=XXXXXX}
> ACTION: OAUTH2_USER_PROFILE_CREATED
> APPLICATION: CAS
> WHEN: Tue Oct 15 22:58:40 UTC 2024
> CLIENT IP ADDRESS: x.x.x.x
> SERVER IP ADDRESS: 127.0.0.1
>
> my oidc service config
> {
>     "@class": "org.apereo.cas.services.OidcRegisteredService",
>     "clientId": "xxxxxx",
>     "clientSecret": "xxxxxxxx",
>     "serviceId": "^(http|https)://.*",
>     "name": "oidc",
>     "id": 14102024,
>     "bypassApprovalPrompt": true,
>     "description": "Service OIDC pour Moodle",
>     "evaluationOrder": 1,
>     "scopes": ["java.util.HashSet", [ "openid", "profile", "email" ] ],
>
>     "attributeReleasePolicy" : {
>         "@class": 
> "org.apereo.cas.services.ReturnMappedAttributeReleasePolicy",
>         "allowedAttributes": {
>         "@class": "java.util.TreeMap",
>         "mail": "email",
>         "sn": "family_name",
>         "givenName": "given_name"
>                 }
>         }
> }
> my cas.properties
> cas.server.name=https://cas.exemple.com
> cas.server.prefix=${cas.server.name}/cas
> logging.config=file:/etc/cas/config/log4j2.xml
> # URL de base pour OpenID Connect
> cas.authn.oidc.core.issuer=https://cas.exemple.com/cas/oidc
> cas.authn.oidc.discovery.discoverySettingsEnabled=true
>
> cas.authn.oidc.jwks.file-system.jwks-file=file:///etc/cas/config/keystore.jwks
> cas.authn.oidc.discovery.scopes=openid,profile,email
> cas.authn.attributeRepository.ldap[0].attributes.sn=sn
> cas.authn.attributeRepository.ldap[0].attributes.givenName=givenName
> cas.authn.attributeRepository.ldap[0].attributes.mail=mail
> cas.authn.oidc.userinfo.claims=sn,givenName,mail
> cas.authn.oidc.id-token.include-id-token-claims=true
> cas.authn.oidc.discovery.enabled=true
> cas.authn.oidc.skew=5
>
> cas.authn.ldap[0].principalAttributeList=sn,givenName,mail,eduPersonPrimaryAffiliation,displayName
> How can i fix it?????
>

-- 
- Website: https://apereo.github.io/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
--- 
You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit 
https://groups.google.com/a/apereo.org/d/msgid/cas-user/a18f2629-1335-4164-b0a9-2093bf6ef0afn%40apereo.org.

Reply via email to