🐛(oauth2) remove ProConnect unknown claims

When we don't have information about the requested claims, they must be ignored.
2025-03-13 14:52:00 +01:00
parent e1193bc26d
commit 803b2c1930
1 changed files with 0 additions and 9 deletions
--- a/src/backend/mailbox_oauth2/validators.py
+++ b/src/backend/mailbox_oauth2/validators.py
@@ -162,15 +162,6 @@ class ProConnectValidator(BaseValidator):
                request.user.domain.organization.registration_id_list[0][:9]
            )

-        for empty_claim in [
-            "organizational_unit",
-            "belonging_population",
-            "phone",
-            "chorusdt",
-        ]:
-            if empty_claim in request.scopes:
-                additional_claims[empty_claim] = ""
-
        # Include 'acr' claim if it is present in the request claims and equals 'eidas1'
        # see _create_authorization_code method for more details
        if request.claims and request.claims.get("acr") == "eidas1":