[OpenID] Return Authorities to Client
John Bradley
ve7jtb at ve7jtb.com
Mon Dec 7 14:54:42 UTC 2015
You can add it as a scope or as a claim depending on how you are constructing the UI. I don’t know if MITREid supports asking for specific claims from the user_info endpoint.
http://openid.net/specs/openid-connect-core-1_0.html#ClaimsParameter <http://openid.net/specs/openid-connect-core-1_0.html#ClaimsParameter>
John B.
> On Dec 7, 2015, at 7:42 AM, Steve Garing <steve.garing at guvera.com> wrote:
>
> Hi,
>
> Is there a standard way to return the authorities to a client? I haven’t been able to get the authorities returned via standard functionality in the MITREid Connect project and we’d like the clients to have visibility of a users role to determine some client side functionality.
>
> Would it correct to think that the clients can request and extra scope like ‘authorities’ and then provide the authorities in the id_token and from the userinfo endpoint?
>
> Thanks,
> Steve
> _______________________________________________
> general mailing list
> general at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-general
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20151207/7c8728c2/attachment.html>
More information about the general
mailing list