studio/people
Archived
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

🐛(oauth2) remove ProConnect unknown claims

Browse Source 
When we don't have information about the requested claims, they must be
ignored.
This commit is contained in:
Quentin BEY
2025-03-13 14:52:00 +01:00
parent e1193bc26d
commit 803b2c1930
1 changed files with 0 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
src/backend/mailbox_oauth2/validators.py
View File

@@ -162,15 +162,6 @@ class ProConnectValidator(BaseValidator):
request.user.domain.organization.registration_id_list[0][:9] request.user.domain.organization.registration_id_list[0][:9]
) )
for empty_claim in [
"organizational_unit",
"belonging_population",
"phone",
"chorusdt",
]:
if empty_claim in request.scopes:
additional_claims[empty_claim] = ""
# Include 'acr' claim if it is present in the request claims and equals 'eidas1' # Include 'acr' claim if it is present in the request claims and equals 'eidas1'
# see _create_authorization_code method for more details # see _create_authorization_code method for more details
if request.claims and request.claims.get("acr") == "eidas1": if request.claims and request.claims.get("acr") == "eidas1":