Uploaded image for project: 'ModeShape'
  1. ModeShape
  2. MODE-2748

access token claims are not updated when calling /protocol/openid-connect/token

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Trivial
    • None
    • None
    • Common
    • None

    Description

      Noticed that access_token claims are not updated when we are trying to update token by calling auth/realms/myrealm/protocol/openid-connect/token endpoint with grant_type: refresh_token or grant_type: authorization_code.

      1. Create a new oidc provider, OIDC_Provider
      2. Setup 'Attribute Importer' mappers, e.g. customerid, shopperid 
      3. Create a client for demospa, 
      4. Request authentication from demospa
      5. Complete authentication, receive access token and refresh token in demoapp
      6. Observe that the claims is good - we haven't populated the customerid, shopperid claims.
      7. Proceed to update claims on OIDC_Provider and update customerid and shopperid.   ** 
      8. Request a new access token using grant_type=refresh_token and observe that the claim does not have customerid, shopperid from the new access token.
      9. Request a new access token using {{grant_type=authorization_code }}and observe that the claim does not have customerid, shopperid from the new access token.
      10. Log out from the session.
      11. Request authentication from demospa
      12. Observe the claim customerid, shopperid appears in the access_token.    

      I would have thought steps 8 and 9, would update the refresh_token. Is the the same expectation as well?

       

      Attachments

        Activity

          People

            Unassigned Unassigned
            jeremy.woowengkeong jeremy woo (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated: