From 8e3d70f6351efe0e346d545e156c052804aee655 Mon Sep 17 00:00:00 2001
From: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date: Fri, 30 Apr 2021 11:24:33 +0200
Subject: [PATCH] auth_oidc: log id_token content for debug (#53591)

---
 src/authentic2_auth_oidc/backends.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/authentic2_auth_oidc/backends.py b/src/authentic2_auth_oidc/backends.py
index ed8ac7fa..bc708fb8 100644
--- a/src/authentic2_auth_oidc/backends.py
+++ b/src/authentic2_auth_oidc/backends.py
@@ -45,6 +45,9 @@ class OIDCBackend(ModelBackend):
             logger.warning('auth_oidc: invalid id_token %s: %s', original_id_token, e)
             return None
 
+        id_token_content = id_token.as_dict(provider)
+        logger.debug('auth_oidc: id_token content %s', id_token_content)
+
         try:
             provider = utils.get_provider_by_issuer(id_token.iss)
         except models.OIDCProvider.DoesNotExist:
@@ -214,7 +217,7 @@ class OIDCBackend(ModelBackend):
         user_ou = provider.ou
         save_user = False
         mappings = []
-        context = id_token.as_dict(provider)
+        context = id_token_content.copy()
         if need_user_info:
             context.update(user_info or {})
 
-- 
2.31.1