Hi Monika, A few things to check,
1. Check whether the claims you want in your id_token, user info response is configured as requested claims (You have already done this) 2. Claim you have defined in #1 have corresponding claim uris in OIDC(OpenID Connect) dialect. Some of the claims that are shipped OOTB by WSO2 Identity Server will already have this mapping (eg: http://wso2.org/claims/givenName has a corresponding URI in OIDC dialect as *given_name *already) Basically, you need to have a mapping between the local claim URI and a claim URI in OIDC dialect (Refer [1]) 3. The claim URIs for required claims in OIDC dialect are added to OIDC scope file. (Refer [2]) [1] https://docs.wso2.com/display/IS530/Adding+Claim+Mapping ("Add an external claim section") [2] https://stackoverflow.com/a/40042390/5820670 Thanks, Farasath Farasath Ahamed Senior Software Engineer, WSO2 Inc.; http://wso2.com Mobile: +94777603866 Blog: blog.farazath.com Twitter: @farazath619 <https://twitter.com/farazath619> <http://wso2.com/signature> On Tue, Feb 20, 2018 at 6:26 PM, Chiran Wijesekara <chir...@wso2.com> wrote: > Hi Monika, > > And also make sure that you have done the claim configuration properly. It > could be found under the given service provider configuration. > > Thanks > > On Tue, Feb 20, 2018 at 10:35 AM, Sathya Bandara <sat...@wso2.com> wrote: > >> Hi Monika, >> >> Have you added the required user attributes under user profile section? >> If these attributes are not provided they will not be available in the user >> info endpoint response. Please refer [1] for more information. >> >> [1] https://docs.wso2.com/display/IS540/Managing+User+Attributes >> >> Thanks, >> Sathya >> >> On Tue, Feb 20, 2018 at 10:30 AM, Darshana Gunawardana <darsh...@wso2.com >> > wrote: >> >>> Hi Monika, >>> >>> Seems like you haven't subscribed to the dev mailing list properly.. So >>> the mails you sent to dev getting on hold.. For the moment, i have fwd the >>> mail to the dev mailing list on your behalf.. >>> >>> @Sathya: Can you check on this please.. >>> >>> Thanks, >>> >>> >>> ---------- Forwarded message ---------- >>> From: Monika Sharma <monika.sha...@india.nec.com> >>> Date: Tue, Feb 20, 2018 at 8:29 AM >>> Subject: RE: Query Regarding the JIRA BUG- IDEBTITY-4250 >>> To: Darshana Gunawardana <darsh...@wso2.com>, WSO2 Developers' List < >>> dev@wso2.org> >>> >>> >>> Hello sir , >>> >>> >>> >>> Thank you so much for giving your valuable time. I have tried by adding >>> requested claims in the SP. >>> >>> I have added the following request claims in the SP : >>> >>> >>> >>> 1. http://wso2.org/claims/userid >>> >>> 2. http://wso2.org/claims/created >>> >>> 3. http://wso2.org/claims/country >>> >>> 4. http://wso2.org/claims/displayName >>> >>> 5. http://wso2.org/claims/emailaddres >>> >>> 6. http://wso2.org/claims/givenName >>> >>> 7. http://wso2.org/claims/groups >>> >>> >>> >>> And subject claim URI is: >>> >>> 1. http://wso2.org/claims/emailaddres >>> >>> >>> >>> Now response is as below: >>> >>> >>> >>> { >>> >>> "sub”: admin", >>> >>> "give_name" : "admin", >>> >>> "email" : "ad...@wso2.com" >>> >>> } >>> >>> >>> >>> Only few information is displayed. Please let me know is it expected >>> result ? >>> >>> >>> >>> Thanks & Regards >>> >>> Monika Sharma >>> >>> >>> >>> >>> >>> *From:* Darshana Gunawardana [mailto:darsh...@wso2.com] >>> *Sent:* Saturday, February 17, 2018 10:13 PM >>> *To:* Monika Sharma; WSO2 Developers' List >>> *Subject:* Re: Query Regarding the JIRA BUG- IDEBTITY-4250 >>> >>> >>> >>> Hi Monika, >>> >>> >>> >>> Have you added requested claims in the SP claim configurations section? >>> If you haven't added any requested claims, returning only the subject from >>> the userinfo endpoint is expected.. >>> >>> >>> >>> Try adding requested claims in the SP. >>> >>> >>> >>> Regards, >>> >>> >>> >>> On Fri, Feb 16, 2018 at 3:29 PM, Monika Sharma < >>> monika.sha...@india.nec.com> wrote: >>> >>> Hello sir, >>> >>> >>> >>> I have a query regarding the https://wso2.org/jira/browse/IDENTITY-4250 bug >>> of wso2 identity server. It has been fixed in 5.3.0 Beta version of wso2 >>> identity server. But I am facing the same issue in the 5.3.0 release >>> version of wso2 identity server and also verified in the 5.4.0 release >>> version, problem is remains in both version. Please check this issue. I >>> have followed the below steps to reproduce this issue: >>> >>> Steps : >>> >>> 1. Register a SP for playground app >>> Callback URL - http://localhost:8080/playground2/oauth2client >>> Allowed Grant Types = Code >>> >>> 2. Visit the URL http://localhost:8080/playground2/oauth2.jsp >>> <http://localhost:8080/playground2/oauth2.jsp>and enter the below >>> details and submit >>> Authorization Grant Type : Authorization Code >>> Client ID : (the client id received at the application registration) >>> Scope : openid >>> Callback URL : http://localhost:8080/playground2/oauth2client >>> Authorize Endpoint : https://localhost:9443/oauth2/authorize >>> >>> 3. Enter user name and password of the admin and click on login >>> >>> 4. Enter callback url and other info >>> >>> 5. Enter the user info endpoint and click on get user info >>> https://localhost:9443/oauth2/userinfo?schema=openid >>> >>> I have follow this link to register app https://docs.wso2.com/display/ >>> IS530/Basic+Client+Profile+with+Playground >>> <https://docs.wso2.com/display/IS530/Basic+Client+Profile+with+Playground> >>> and >>> try to access the user information through the curl command using a valid >>> access token >>> >>> >>> >>> Issue: Only 'subject' field is returned when userinfo is requested by >>> curl command using a valid access token >>> >>> >>> >>> e.g curl -k -H "Authorization: Bearer YOUR_ACCESS_TOKEN" https://loc >>> alhost:9443/oauth2/userinfo?schema=openid >>> >>> >>> >>> The following response is displayed: >>> >>> {"sub":"admin”} >>> >>> >>> >>> But Expected response should be displayed as below >>> >>> { >>> >>> "sub":"admin", >>> >>> "email":"ad...@wso2.com", >>> >>> "website":"https://wso2.com"; <https://wso2.com/>, >>> >>> "name":"admin", >>> >>> "family_name":"admin", >>> >>> "preferred_username":"admin", >>> >>> "given_name":"admin", >>> >>> "profile":"https://wso2.com"; <https://wso2.com/>, >>> >>> "country":"Sri Lanka" >>> >>> } >>> >>> >>> >>> Thanks & Regards >>> >>> Monika Sharma >>> >>> >>> >>> >>> >>> >>> >>> >>> >>> -- >>> >>> Regards, >>> >>> >>> >>> *Darshana Gunawardana* >>> >>> Technical Lead >>> >>> WSO2 Inc.; http://wso2.com >>> * E-mail: **darsh...@wso2.com* <darsh...@wso2.com> >>> * Mobile: +94718566859 <+94%2071%20856%206859>* >>> Lean . Enterprise . Middleware >>> >>> >>> >>> -- >>> Regards, >>> >>> >>> *Darshana Gunawardana*Technical Lead >>> WSO2 Inc.; http://wso2.com >>> >>> *E-mail: darsh...@wso2.com <darsh...@wso2.com>* >>> *Mobile: +94718566859 <+94%2071%20856%206859>*Lean . Enterprise . >>> Middleware >>> >> >> >> >> -- >> Sathya Bandara >> Software Engineer >> WSO2 Inc. http://wso2.com >> Mobile: (+94) 715 360 421 <+94%2071%20411%205032> >> >> <+94%2071%20411%205032> >> >> _______________________________________________ >> Dev mailing list >> Dev@wso2.org >> http://wso2.org/cgi-bin/mailman/listinfo/dev >> >> > > > -- > *Chiran Wijesekara* > > > *Software Engineering Intern | WSO2*Email: chir...@wso2.com > Mobile: +94712990173web: www.wso2.com > > [image: https://wso2.com/signature] <https://wso2.com/signature> > > _______________________________________________ > Dev mailing list > Dev@wso2.org > http://wso2.org/cgi-bin/mailman/listinfo/dev > >
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
