Hi Piraveena, +1 For the OIDC hybrid flow implementation c_hash value should be injected to id_token and I can use this new service for that.
Thanks. On Mon, Nov 20, 2017 at 10:46 AM, Piraveena Paralogarajah < [email protected]> wrote: > Hi all, > > According to the current implementation, there is no way to inject claims > into ID Token without changing the existing code base. So there are some > case where we need to insert claims to ID token for some specific purposes. > For an example, In OpenID Connect Back-channel logout, sid claim needs to > be injected into ID Token. > > So I have implemented a supplementary OSGi service to add new claims to ID > Token. So anyone can implement this service and insert new claims into ID > Token without changing the code base. > > The diagram below shows how this works > > > > > I have attached my PR also here [1]. > > This blog can be referred for further details [2]. > > Any feedback is appreciated. > > [1] https://github.com/wso2-extensions/identity-inbound-auth > -oauth/pull/621 > [2] https://medium.com/@piraveenaparalogarajah/how-to-add-ne > w-claims-to-id-token-by-implementing-supplementary-osgi-serv > ice-in-wso2-identity-626d19cfecab > > Thanks, > > -- > *Piraveena Paralogarajah* > Intern- Software Engineering | WSO2 > *Email *: [email protected] > *Blog* : https://medium.com/@piraveenaparalogarajah > *Mobile* : +94776099594 <+94%2077%20609%209594> > <http://wso2.com/signature> > -- *Hasini Witharana* Software Engineering Intern | WSO2 *Email : [email protected] <[email protected]>* *Mobile : +94713850143[image: http://wso2.com/signature] <http://wso2.com/signature>*
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
