0001-idp-oidc-skip-unset-attributes-in-user-info-23643.patch

Frédéric Péters, 07 mai 2018 19:38

Voir les différences: en ligne côte à côte

Subject: [PATCH] idp oidc: skip unset attributes in user-info (#23643)

 src/authentic2_idp_oidc/utils.py | 2 ++
 tests/test_idp_oidc.py           | 6 ++++++
 2 files changed, 8 insertions(+)

         for claim in client.oidcclaim_set.filter(name__isnull=False):
             if not set(claim.get_scopes()).intersection(scope_set):
                 continue
             if not claim.value in attributes:
                 continue
             user_info[claim.name] = normalize_claim_values(attributes[claim.value])
             # check if attribute is verified
             if claim.value + ':verified' in attributes:

         assert response.json['ou'] == simple_user.ou.name
         assert response.json['roles'][0] == 'Whatever'
         # check against a user without username
         simple_user.username = None
         simple_user.save()
         response = app.get(user_info_url, headers=bearer_authentication_headers(access_token))
         assert 'preferred_username' not in response.json
         # Now logout
         if oidc_client.post_logout_redirect_uris:
             params = {
+    -

Produits Entr'ouvert » Authentic 2