taiga-contrib-openid-auth icon indicating copy to clipboard operation
taiga-contrib-openid-auth copied to clipboard

Published 20 hours ago verified publisher icon robrotheram

Problem when use with Keycloak 12, parameter is scope=User.Read instead of scope=openid

Open kappa-wingman opened this issue 3 years ago • 2 comments

I am using Keycloak 12. When I click the login button, the parameter send to Keycloak has '&scope=User.Read'. I had already set this in Taiga main configuration file config.py OPENID_ID_FIELD = "sub" OPENID_USERNAME_FIELD = "preferred_username" OPENID_FULLNAME_FIELD = "name" OPENID_EMAIL_FIELD = "email" OPENID_SCOPE="openid email"

I had to manually get the full URI and change it to &scope=openid and it works now.

kappa-wingman avatar May 31 '21 08:05 kappa-wingman

@kappa-wingman Had the same problem. Changed "User.Read" to "openid" here: taiga-contrib-openid-auth/front/dist/openid-auth.js Worked just fine

zamgreg avatar Jun 25 '21 22:06 zamgreg

I also ran into this issue and noticed in openid-auth.js it is setting a default value if the variable isn't specified.

Adding the following to /usr/share/nginx/html/conf.json works:

"openidScope": "openid"

karezza avatar Jul 02 '21 02:07 karezza