Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

When using server-side sessions, load subject from server side session store if in use #1327

Merged
merged 3 commits into from
Jul 19, 2023
Merged

When using server-side sessions, load subject from server side session store if in use #1327

merged 3 commits into from
Jul 19, 2023

Conversation

brockallen
Copy link
Member

@brockallen brockallen commented Jun 6, 2023
edited
Loading

This PR changes how the introspection endpoint works when using server side sessions. The Subject now passed to the profile service will be the ClaimsPrincipal from the server-side session store, rather than a "minimal" ClaimsPrincipal synthesized from the claims in the access token. This allows the userinfo endpoint claims generation to now access claims that are only determined as part of the user's session (in addition to anything previously accessible from the user profile store).

Closes: #1254
Closes: #884

@brockallen brockallen added the enhancement New feature or request label Jun 6, 2023
@brockallen brockallen added this to the 7.0 milestone Jun 6, 2023
@brockallen brockallen marked this pull request as ready for review June 6, 2023 20:35
josephdecock
josephdecock approved these changes Jul 7, 2023
View reviewed changes
Copy link
Member

@josephdecock josephdecock left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we add a test? Maybe not, could be a lot of setup for not much value.

@brockallen
Copy link
Member Author

Should we add a test? Maybe not, could be a lot of setup for not much value.

Actually I forgot that our existing tests already have code coverage that executes this new code in this PR. That's why I didn't feel we needed any additional tests.

@brockallen brockallen merged commit e9c08f9 into main Jul 19, 2023
@brockallen brockallen deleted the brock/userinfo-and-sss branch July 19, 2023 19:47
@josephdecock josephdecock mentioned this pull request Nov 13, 2023
Closed
@RolandGuijt RolandGuijt mentioned this pull request Aug 12, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@josephdecock josephdecock josephdecock approved these changes

@AndersAbel AndersAbel Awaiting requested review from AndersAbel

Assignees
No one assigned
Labels
enhancement New feature or request release notes done
Projects
None yet
Milestone
7.0.0
2 participants
@brockallen @josephdecock