Param missing from attributes when login with oauth2 #333
-
I am having a problem with DEBUG [reactor-http-epoll-1] i.k.u.s.r.e.OauthAuthorityExtractor: Param missing from attributes, skipping
DEBUG [reactor-http-epoll-1] i.k.u.s.r.e.OauthAuthorityExtractor: Token's groups: []
DEBUG [reactor-http-epoll-1] i.k.u.s.r.e.OauthAuthorityExtractor: Matched roles: [] I think the config is correct: auth:
type: OAUTH2
oauth2:
client:
my-oauth:
provider: my-oauth
clientId: ...
clientSecret: ...
client-name: "my-oauth" # will be displayed on the login page
redirect-uri: https://...
authorization-grant-type: authorization_code
issuer-uri: https://d...
scope: ["openid", "groups", "userinfo"]
custom-params:
type: oauth
roles-field: groups # required for RBAC, a field name in OAuth token which will contain user's roles/groups Any ideas? Does |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 4 replies
-
Hi, yes, exactly that, "groups" field couldn't be found in your user's token. |
Beta Was this translation helpful? Give feedback.
Hi, yes, exactly that, "groups" field couldn't be found in your user's token.
I also recommend updating the latest (main-tagged image) version, which contains some improvements on this topic.