artur,
Perhaps 'user-defined scopes' under
https://apereo.github.io/cas/7.0.x/authentication/OIDC-Authentication-Claims-Mapping.html#mapping-claims-per-service
Ray
On Thu, 2024-02-29 at 08:39 -0800, artur mis wrote:
Notice: This message was sent from outside the University of Victoria email
system. Please be cautious with links and sensitive information.
service like This:
{
"@class": "org.apereo.cas.services.OidcRegisteredService",
"clientId": "demoOIDC_wsl",
"clientSecret": "xxxxx",
"serviceId": "^(https|http)://localhost/.*",
"signIdToken": true,
"implicit": true,
"bypassApprovalPrompt": false,
"name": "Demo",
"id": 22,
"evaluationOrder": 100,
"encryptIdToken": false,
"scopes": [ "java.util.HashSet",[ "openid", "profile", "email" ]]
}
I would like to define claims in service not like bellow in cas.propierties.
cas.authn.oidc.discovery.scopes=openid,email,profile
cas.authn.oidc.discovery.claims=displayName,mail
I have tested cas.propierties with commened lines:
cas.authn.oidc.discovery.scopes=openid,email,profile
cas.authn.oidc.discovery.claims=displayName,mail
and i add line : claims : ["displayName", "mail" ] to service but it seems it
doesnt work.
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to cas-user+unsubscr...@apereo.org.
To view this discussion on the web visit
https://groups.google.com/a/apereo.org/d/msgid/cas-user/69ee32539a582deb41589e8a2b31c49b656725b0.camel%40uvic.ca.
