trustchain-oc1-orchestral
/
authentik
Archived
10
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

providers/oauth2: add all hardcoded claims to claims_supported list 

closes #3702

Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
This commit is contained in:
Jens Langhammer 2022-09-29 10:27:46 +02:00
parent c0270cc3b3
commit 7c0754000c
1 changed files with 11 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
authentik/providers/oauth2/views/provider.py
View File

@ -93,8 +93,17 @@ class ProviderInfoView(View):
"scopes_supported": scopes, "scopes_supported": scopes,
# https://openid.net/specs/openid-connect-core-1_0.html#RequestObject # https://openid.net/specs/openid-connect-core-1_0.html#RequestObject
"request_parameter_supported": False, "request_parameter_supported": False,
# Because claims are dynamic and per-application, the only fixed Claim is "sub" # Because claims are dynamic and per-application, the only claims listed here
"claims_supported": ["sub"], # are ones that are always set by authentik itself on every token
"claims_supported": [
"sub",
"iss",
"aud",
"exp",
"iat",
"auth_time",
"acr",
],
"claims_parameter_supported": False, "claims_parameter_supported": False,
} }