liferay-oidc-plugin icon indicating copy to clipboard operation
liferay-oidc-plugin copied to clipboard

Published 20 hours ago verified publisher icon finalist

OpenID Connect UserInfo does not contain email field

Open scmdavid opened this issue 2 years ago • 1 comments

Environment • OpenID Connect Liferay plugin 0.5.2 • Azure AD B2C • Liferay CE 7.0.6 GA

Login failed and found the following error:

ERROR [http-nio-8080-exec-5][Liferay70Adapter:69] Unexpected: OpenID Connect UserInfo does not contain email field. Cannot correlate to Liferay user. UserInfo: {sub=yyyyyyyy-98e0-45db-bd4f-3d5f0d4d134c, given_name=Tester, family_name=LocalAccount, [email protected]}

Could I fall back to the default login? For example, say I made a mistake on configuration; how could I sign in again (not with OIDC) and make the correction?

For 7.0 DXP, I don’t think it reads the openidconnect.enableOpenIDConnect from portal-ext.properties

scmdavid avatar Feb 15 '23 12:02 scmdavid

Worked when switched to Generic OpenID Provider

Be careful about selecting the OpenID Provider type; they have different expectations about the claims returned from UserInfo endpoint:

Generic: {email, given_name, family_name} Azure AD: {unique_name, given_name, family_name}

scmdavid avatar Feb 15 '23 18:02 scmdavid