Re: [Dev] Query Regarding the JIRA BUG- IDEBTITY-4250

2018-02-21 Thread Farasath Ahamed 
Hi Monika,

A few things to check,

1. Check whether the claims you want in your id_token, user info response
is configured as requested claims (You have already done this)
2. Claim you have defined in #1 have corresponding claim uris in
OIDC(OpenID Connect) dialect.

Some of the claims that are shipped OOTB by WSO2 Identity Server will
already have this mapping (eg: http://wso2.org/claims/givenName has a
corresponding URI in OIDC dialect as *given_name *already)
Basically, you need to have a mapping between the local claim URI and a
claim URI in OIDC dialect (Refer [1])

3. The claim URIs for required claims in OIDC dialect are added to OIDC
scope file. (Refer [2])


[1] https://docs.wso2.com/display/IS530/Adding+Claim+Mapping ("Add an
external claim section")
[2] https://stackoverflow.com/a/40042390/5820670



Thanks,
Farasath


Farasath Ahamed
Senior Software Engineer, WSO2 Inc.; http://wso2.com
Mobile: +94777603866
Blog: blog.farazath.com
Twitter: @farazath619 





On Tue, Feb 20, 2018 at 6:26 PM, Chiran Wijesekara  wrote:

> Hi Monika,
>
> And also make sure that you have done the claim configuration properly. It
> could be found under the given service provider configuration.
>
> Thanks
>
> On Tue, Feb 20, 2018 at 10:35 AM, Sathya Bandara  wrote:
>
>> Hi Monika,
>>
>> Have you added the required user attributes under user profile section?
>> If these attributes are not provided they will not be available in the user
>> info endpoint response. Please refer [1] for more information.
>>
>> [1] https://docs.wso2.com/display/IS540/Managing+User+Attributes
>>
>> Thanks,
>> Sathya
>>
>> On Tue, Feb 20, 2018 at 10:30 AM, Darshana Gunawardana > > wrote:
>>
>>> Hi Monika,
>>>
>>> Seems like you haven't subscribed to the dev mailing list properly.. So
>>> the mails you sent to dev getting on hold.. For the moment, i have fwd the
>>> mail to the dev mailing list on your behalf..
>>>
>>> @Sathya: Can you check on this please..
>>>
>>> Thanks,
>>>
>>>
>>> -- Forwarded message --
>>> From: Monika Sharma 
>>> Date: Tue, Feb 20, 2018 at 8:29 AM
>>> Subject: RE: Query Regarding the JIRA BUG- IDEBTITY-4250
>>> To: Darshana Gunawardana , WSO2 Developers' List <
>>> dev@wso2.org>
>>>
>>>
>>> Hello sir ,
>>>
>>>
>>>
>>> Thank you so much for giving your valuable time. I have tried by adding
>>> requested claims in the SP.
>>>
>>> I have added the following request claims in the SP :
>>>
>>>
>>>
>>> 1.   http://wso2.org/claims/userid
>>>
>>> 2.   http://wso2.org/claims/created
>>>
>>> 3.   http://wso2.org/claims/country
>>>
>>> 4.   http://wso2.org/claims/displayName
>>>
>>> 5.   http://wso2.org/claims/emailaddres
>>>
>>> 6.   http://wso2.org/claims/givenName
>>>
>>> 7.   http://wso2.org/claims/groups
>>>
>>>
>>>
>>> And subject claim URI is:
>>>
>>> 1.   http://wso2.org/claims/emailaddres
>>>
>>>
>>>
>>> Now response is as below:
>>>
>>>
>>>
>>> {
>>>
>>> "sub”: admin",
>>>
>>> "give_name" : "admin",
>>>
>>>   "email" : "ad...@wso2.com"
>>>
>>> }
>>>
>>>
>>>
>>> Only few information is displayed. Please let me know is it expected
>>> result ?
>>>
>>>
>>>
>>> Thanks & Regards
>>>
>>> Monika Sharma
>>>
>>>
>>>
>>>
>>>
>>> *From:* Darshana Gunawardana [mailto:darsh...@wso2.com]
>>> *Sent:* Saturday, February 17, 2018 10:13 PM
>>> *To:* Monika Sharma; WSO2 Developers' List
>>> *Subject:* Re: Query Regarding the JIRA BUG- IDEBTITY-4250
>>>
>>>
>>>
>>> Hi Monika,
>>>
>>>
>>>
>>> Have you added requested claims in the SP claim configurations section?
>>> If you haven't added any requested claims, returning only the subject from
>>> the userinfo endpoint is expected..
>>>
>>>
>>>
>>> Try adding requested claims in the SP.
>>>
>>>
>>>
>>> Regards,
>>>
>>>
>>>
>>> On Fri, Feb 16, 2018 at 3:29 PM, Monika Sharma <
>>> monika.sha...@india.nec.com> wrote:
>>>
>>> Hello sir,
>>>
>>>
>>>
>>> I have a query regarding the https://wso2.org/jira/browse/IDENTITY-4250  bug
>>> of wso2 identity server. It has been fixed in 5.3.0 Beta version of wso2
>>> identity server. But I am facing the same issue in the 5.3.0 release
>>> version of wso2 identity server and also verified in the 5.4.0 release
>>> version, problem is remains in both version. Please check this issue. I
>>> have followed the below steps to reproduce this issue:
>>>
>>> Steps :
>>>
>>> 1.   Register a SP for playground app
>>> Callback URL - http://localhost:8080/playground2/oauth2client
>>> Allowed Grant Types = Code
>>>
>>> 2.   Visit the URL http://localhost:8080/playground2/oauth2.jsp
>>> and enter the below
>>> details and submit
>>> Authorization Grant Type : Authorization Code
>>> Client ID : (the client id received at the application registration)
>>> Scope : openid
>>> Callback URL : http://localhost:8080/playground2/oauth2client
>>> Authorize Endpoint : https://localhost:9443/oauth2/authorize
>>>
>>> 3.

Re: [Dev] Query Regarding the JIRA BUG- IDEBTITY-4250

2018-02-20 Thread Chiran Wijesekara 
Hi Monika,

And also make sure that you have done the claim configuration properly. It
could be found under the given service provider configuration.

Thanks

On Tue, Feb 20, 2018 at 10:35 AM, Sathya Bandara  wrote:

> Hi Monika,
>
> Have you added the required user attributes under user profile section? If
> these attributes are not provided they will not be available in the user
> info endpoint response. Please refer [1] for more information.
>
> [1] https://docs.wso2.com/display/IS540/Managing+User+Attributes
>
> Thanks,
> Sathya
>
> On Tue, Feb 20, 2018 at 10:30 AM, Darshana Gunawardana 
> wrote:
>
>> Hi Monika,
>>
>> Seems like you haven't subscribed to the dev mailing list properly.. So
>> the mails you sent to dev getting on hold.. For the moment, i have fwd the
>> mail to the dev mailing list on your behalf..
>>
>> @Sathya: Can you check on this please..
>>
>> Thanks,
>>
>>
>> -- Forwarded message --
>> From: Monika Sharma 
>> Date: Tue, Feb 20, 2018 at 8:29 AM
>> Subject: RE: Query Regarding the JIRA BUG- IDEBTITY-4250
>> To: Darshana Gunawardana , WSO2 Developers' List <
>> dev@wso2.org>
>>
>>
>> Hello sir ,
>>
>>
>>
>> Thank you so much for giving your valuable time. I have tried by adding
>> requested claims in the SP.
>>
>> I have added the following request claims in the SP :
>>
>>
>>
>> 1.   http://wso2.org/claims/userid
>>
>> 2.   http://wso2.org/claims/created
>>
>> 3.   http://wso2.org/claims/country
>>
>> 4.   http://wso2.org/claims/displayName
>>
>> 5.   http://wso2.org/claims/emailaddres
>>
>> 6.   http://wso2.org/claims/givenName
>>
>> 7.   http://wso2.org/claims/groups
>>
>>
>>
>> And subject claim URI is:
>>
>> 1.   http://wso2.org/claims/emailaddres
>>
>>
>>
>> Now response is as below:
>>
>>
>>
>> {
>>
>> "sub”: admin",
>>
>> "give_name" : "admin",
>>
>>   "email" : "ad...@wso2.com"
>>
>> }
>>
>>
>>
>> Only few information is displayed. Please let me know is it expected
>> result ?
>>
>>
>>
>> Thanks & Regards
>>
>> Monika Sharma
>>
>>
>>
>>
>>
>> *From:* Darshana Gunawardana [mailto:darsh...@wso2.com]
>> *Sent:* Saturday, February 17, 2018 10:13 PM
>> *To:* Monika Sharma; WSO2 Developers' List
>> *Subject:* Re: Query Regarding the JIRA BUG- IDEBTITY-4250
>>
>>
>>
>> Hi Monika,
>>
>>
>>
>> Have you added requested claims in the SP claim configurations section?
>> If you haven't added any requested claims, returning only the subject from
>> the userinfo endpoint is expected..
>>
>>
>>
>> Try adding requested claims in the SP.
>>
>>
>>
>> Regards,
>>
>>
>>
>> On Fri, Feb 16, 2018 at 3:29 PM, Monika Sharma <
>> monika.sha...@india.nec.com> wrote:
>>
>> Hello sir,
>>
>>
>>
>> I have a query regarding the https://wso2.org/jira/browse/IDENTITY-4250  bug
>> of wso2 identity server. It has been fixed in 5.3.0 Beta version of wso2
>> identity server. But I am facing the same issue in the 5.3.0 release
>> version of wso2 identity server and also verified in the 5.4.0 release
>> version, problem is remains in both version. Please check this issue. I
>> have followed the below steps to reproduce this issue:
>>
>> Steps :
>>
>> 1.   Register a SP for playground app
>> Callback URL - http://localhost:8080/playground2/oauth2client
>> Allowed Grant Types = Code
>>
>> 2.   Visit the URL http://localhost:8080/playground2/oauth2.jsp
>> and enter the below
>> details and submit
>> Authorization Grant Type : Authorization Code
>> Client ID : (the client id received at the application registration)
>> Scope : openid
>> Callback URL : http://localhost:8080/playground2/oauth2client
>> Authorize Endpoint : https://localhost:9443/oauth2/authorize
>>
>> 3.   Enter user name and password of the admin and click on login
>>
>> 4.   Enter callback url and other info
>>
>> 5.   Enter the user info endpoint and click on get user info
>> https://localhost:9443/oauth2/userinfo?schema=openid
>>
>> I have follow this link to register app https://docs.wso2.com/display/
>> IS530/Basic+Client+Profile+with+Playground
>>  
>> and
>> try to access the user information through the curl command using a valid
>> access token
>>
>>
>>
>> Issue: Only 'subject' field is returned when userinfo is requested by
>> curl command using a valid access token
>>
>>
>>
>> e.g  curl -k -H "Authorization: Bearer YOUR_ACCESS_TOKEN" https://loc
>> alhost:9443/oauth2/userinfo?schema=openid
>>
>>
>>
>> The following response is displayed:
>>
>> {"sub":"admin”}
>>
>>
>>
>> But Expected response should be displayed as below
>>
>> {
>>
>>"sub":"admin",
>>
>>"email":"ad...@wso2.com",
>>
>>"website":"https://wso2.com"; ,
>>
>>"name":"admin",
>>
>>"family_name":"admin",
>>
>>"preferred_username":"admin",
>>
>>"given_name":"admin",
>>
>>"profile":"https://wso2.com";

Re: [Dev] Query Regarding the JIRA BUG- IDEBTITY-4250

2018-02-19 Thread Sathya Bandara 
Hi Monika,

Have you added the required user attributes under user profile section? If
these attributes are not provided they will not be available in the user
info endpoint response. Please refer [1] for more information.

[1] https://docs.wso2.com/display/IS540/Managing+User+Attributes

Thanks,
Sathya

On Tue, Feb 20, 2018 at 10:30 AM, Darshana Gunawardana 
wrote:

> Hi Monika,
>
> Seems like you haven't subscribed to the dev mailing list properly.. So
> the mails you sent to dev getting on hold.. For the moment, i have fwd the
> mail to the dev mailing list on your behalf..
>
> @Sathya: Can you check on this please..
>
> Thanks,
>
>
> -- Forwarded message --
> From: Monika Sharma 
> Date: Tue, Feb 20, 2018 at 8:29 AM
> Subject: RE: Query Regarding the JIRA BUG- IDEBTITY-4250
> To: Darshana Gunawardana , WSO2 Developers' List <
> dev@wso2.org>
>
>
> Hello sir ,
>
>
>
> Thank you so much for giving your valuable time. I have tried by adding
> requested claims in the SP.
>
> I have added the following request claims in the SP :
>
>
>
> 1.   http://wso2.org/claims/userid
>
> 2.   http://wso2.org/claims/created
>
> 3.   http://wso2.org/claims/country
>
> 4.   http://wso2.org/claims/displayName
>
> 5.   http://wso2.org/claims/emailaddres
>
> 6.   http://wso2.org/claims/givenName
>
> 7.   http://wso2.org/claims/groups
>
>
>
> And subject claim URI is:
>
> 1.   http://wso2.org/claims/emailaddres
>
>
>
> Now response is as below:
>
>
>
> {
>
> "sub”: admin",
>
> "give_name" : "admin",
>
>   "email" : "ad...@wso2.com"
>
> }
>
>
>
> Only few information is displayed. Please let me know is it expected
> result ?
>
>
>
> Thanks & Regards
>
> Monika Sharma
>
>
>
>
>
> *From:* Darshana Gunawardana [mailto:darsh...@wso2.com]
> *Sent:* Saturday, February 17, 2018 10:13 PM
> *To:* Monika Sharma; WSO2 Developers' List
> *Subject:* Re: Query Regarding the JIRA BUG- IDEBTITY-4250
>
>
>
> Hi Monika,
>
>
>
> Have you added requested claims in the SP claim configurations section? If
> you haven't added any requested claims, returning only the subject from the
> userinfo endpoint is expected..
>
>
>
> Try adding requested claims in the SP.
>
>
>
> Regards,
>
>
>
> On Fri, Feb 16, 2018 at 3:29 PM, Monika Sharma <
> monika.sha...@india.nec.com> wrote:
>
> Hello sir,
>
>
>
> I have a query regarding the https://wso2.org/jira/browse/IDENTITY-4250  bug
> of wso2 identity server. It has been fixed in 5.3.0 Beta version of wso2
> identity server. But I am facing the same issue in the 5.3.0 release
> version of wso2 identity server and also verified in the 5.4.0 release
> version, problem is remains in both version. Please check this issue. I
> have followed the below steps to reproduce this issue:
>
> Steps :
>
> 1.   Register a SP for playground app
> Callback URL - http://localhost:8080/playground2/oauth2client
> Allowed Grant Types = Code
>
> 2.   Visit the URL http://localhost:8080/playground2/oauth2.jsp
> and enter the below details
> and submit
> Authorization Grant Type : Authorization Code
> Client ID : (the client id received at the application registration)
> Scope : openid
> Callback URL : http://localhost:8080/playground2/oauth2client
> Authorize Endpoint : https://localhost:9443/oauth2/authorize
>
> 3.   Enter user name and password of the admin and click on login
>
> 4.   Enter callback url and other info
>
> 5.   Enter the user info endpoint and click on get user info
> https://localhost:9443/oauth2/userinfo?schema=openid
>
> I have follow this link to register app https://docs.wso2.com/display/
> IS530/Basic+Client+Profile+with+Playground
>  and
> try to access the user information through the curl command using a valid
> access token
>
>
>
> Issue: Only 'subject' field is returned when userinfo is requested by curl
> command using a valid access token
>
>
>
> e.g  curl -k -H "Authorization: Bearer YOUR_ACCESS_TOKEN" https://loc
> alhost:9443/oauth2/userinfo?schema=openid
>
>
>
> The following response is displayed:
>
> {"sub":"admin”}
>
>
>
> But Expected response should be displayed as below
>
> {
>
>"sub":"admin",
>
>"email":"ad...@wso2.com",
>
>"website":"https://wso2.com"; ,
>
>"name":"admin",
>
>"family_name":"admin",
>
>"preferred_username":"admin",
>
>"given_name":"admin",
>
>"profile":"https://wso2.com"; ,
>
>"country":"Sri Lanka"
>
> }
>
>
>
> Thanks & Regards
>
> Monika Sharma
>
>
>
>
>
>
>
>
>
> --
>
> Regards,
>
>
>
> *Darshana Gunawardana*
>
> Technical Lead
>
> WSO2 Inc.; http://wso2.com
> * E-mail: **darsh...@wso2.com* 
> * Mobile: +94718566859 <+94%2071%20856%206859>*
> Lean . Enterprise . Middleware
>
>
>
> --
> Regards,
>
>
> *Darshana Gunawardana*Technical Lead
> WSO2 Inc.; http://wso2.com
>
> *E-mail: darsh...

Re: [Dev] Query Regarding the JIRA BUG- IDEBTITY-4250

2018-02-17 Thread Darshana Gunawardana 
Hi Monika,

Have you added requested claims in the SP claim configurations section? If
you haven't added any requested claims, returning only the subject from the
userinfo endpoint is expected..

Try adding requested claims in the SP.

Regards,

On Fri, Feb 16, 2018 at 3:29 PM, Monika Sharma 
wrote:

> Hello sir,
>
>
>
> I have a query regarding the https://wso2.org/jira/browse/IDENTITY-4250  bug
> of wso2 identity server. It has been fixed in 5.3.0 Beta version of wso2
> identity server. But I am facing the same issue in the 5.3.0 release
> version of wso2 identity server and also verified in the 5.4.0 release
> version, problem is remains in both version. Please check this issue. I
> have followed the below steps to reproduce this issue:
>
> Steps :
>
> 1.   Register a SP for playground app
> Callback URL - http://localhost:8080/playground2/oauth2client
> Allowed Grant Types = Code
>
> 2.   Visit the URL http://localhost:8080/playground2/oauth2.jsp
> and enter the below details
> and submit
> Authorization Grant Type : Authorization Code
> Client ID : (the client id received at the application registration)
> Scope : openid
> Callback URL : http://localhost:8080/playground2/oauth2client
> Authorize Endpoint : https://localhost:9443/oauth2/authorize
>
> 3.   Enter user name and password of the admin and click on login
>
> 4.   Enter callback url and other info
>
> 5.   Enter the user info endpoint and click on get user info
> https://localhost:9443/oauth2/userinfo?schema=openid
>
> I have follow this link to register app https://docs.wso2.com/display/
> IS530/Basic+Client+Profile+with+Playground
>  and
> try to access the user information through the curl command using a valid
> access token
>
>
>
> Issue: Only 'subject' field is returned when userinfo is requested by curl
> command using a valid access token
>
>
>
> e.g  curl -k -H "Authorization: Bearer YOUR_ACCESS_TOKEN" https://
> localhost:9443/oauth2/userinfo?schema=openid
>
>
>
> The following response is displayed:
>
> {"sub":"admin”}
>
>
>
> But Expected response should be displayed as below
>
> {
>
>"sub":"admin",
>
>"email":"ad...@wso2.com",
>
>"website":"https://wso2.com"; ,
>
>"name":"admin",
>
>"family_name":"admin",
>
>"preferred_username":"admin",
>
>"given_name":"admin",
>
>"profile":"https://wso2.com"; ,
>
>"country":"Sri Lanka"
>
> }
>
>
>
> Thanks & Regards
>
> Monika Sharma
>
>
>
>
>



-- 
Regards,


*Darshana Gunawardana*Technical Lead
WSO2 Inc.; http://wso2.com

*E-mail: darsh...@wso2.com *
*Mobile: +94718566859*Lean . Enterprise . Middleware
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev