-
Bug
-
Resolution: Unresolved
-
Undefined
-
None
-
None
-
False
-
-
False
-
RHDH Security 3266
Description of problem:
RHDH default AuthResolver only provides token without ProfileInfo as below:
async function signInWithCatalogUserOptional(
name: string | AuthResolverCatalogUserQuery,
ctx: AuthResolverContext,
) {
try {
const query: AuthResolverCatalogUserQuery =
typeof name === 'string'
?
,
}
: name;
const signedInUser = await ctx.signInWithCatalogUser(query);
return Promise.resolve(signedInUser);
}
In Backstage community edition we are able to retrieve userProfile details after successful authentication upon token issuance as below:
AuthResolverContext.issueToken({
claims:
,
Prerequisites (if any, like setup, operators/versions):
Steps to Reproduce
- <steps>
Actual results:
Expected results:
Need the capability to get User Profile Information as well as part of the token with below details with default AppResolverContext :
"profile": {
"email": "xyz@abc.com",
"displayName": "xyz",
"picture": "image_url"
},
We need this for OIDC authentication scenario.
Reproducibility (Always/Intermittent/Only Once):
Always
Build Details:
RHDH 1.2