Skip to content

Commit

Permalink
[FIX] auth_oidc: set user_id for auth_oauth
Browse files Browse the repository at this point in the history
inspired by OCA#336
  • Loading branch information
ap-wtioit committed Feb 28, 2024
1 parent 592cb66 commit b2b7614
Showing 1 changed file with 6 additions and 1 deletion.
7 changes: 6 additions & 1 deletion auth_oidc/models/res_users.py
Original file line number Diff line number Diff line change
Expand Up @@ -65,7 +65,12 @@ def auth_oauth(self, provider, params):
raise AccessDenied()
validation = oauth_provider._parse_id_token(id_token, access_token)
# required check
if not validation.get("user_id"):
if "sub" in validation and "user_id" not in validation:
# set user_id for auth_oauth, user_id is not an OpenID Connect standard
# claim:
# https://openid.net/specs/openid-connect-core-1_0.html#StandardClaims
validation["user_id"] = validation["sub"]
elif not validation.get("user_id"):
_logger.error("user_id claim not found in id_token (after mapping).")
raise AccessDenied()
# retrieve and sign in user
Expand Down

0 comments on commit b2b7614

Please sign in to comment.