Retrieve persons data after login #2709
-
Hi, I tried to use the users access-token to query the api EDIT: I get that it's supposed to be a JWT token but first why? and second what am I supposed to encrypt? It's a plain GET request so what's the payload of the JWT token? |
Beta Was this translation helpful? Give feedback.
Answered by
yaleman
May 8, 2024
Replies: 2 comments 13 replies
-
You shouldn't be encrypting anything, the JWT that comes back as the value of Example from the Python lib's here. |
Beta Was this translation helpful? Give feedback.
7 replies
-
if you’re doing it with OAuth, what scopes are you requesting.
…On 2024-04-16 21:51 Timo Kramer wrote:
sorry for not being clear enough... on the server I am retrieving the token-introspection data after the users login... on the server I need to read the legalname, how would I do that if I can not read it with the oauth token? Would you log in with an admin account from the server and then read the persons metadata?
—
Reply to this email directly, view it on GitHub <#2709 (reply in thread)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AABJB7ABKWOJGSMXQ6SEPELY5UGD3AVCNFSM6AAAAABGHIMJPGVHI2DSMVQWIX3LMV43SRDJONRXK43TNFXW4Q3PNVWWK3TUHM4TCMRZGMYDG>.
You are receiving this because you commented.Message ID: ***@***.***>
|
Beta Was this translation helpful? Give feedback.
6 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Yep, if users need to see and edit their own full account details they'll need to authenticate against the Kanidm API, not OAuth/OIDC.