Skip to content

fix: nested claims mapping in OAuth2 token validation #3814

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

fix: nested claims mapping in OAuth2 token validation #3814

wants to merge 1 commit into from
+96 −3

Conversation

derekhiggins
Copy link
Contributor

@derekhiggins derekhiggins commented Oct 15, 2025
edited
Loading

fix: nested claims mapping in OAuth2 token validation

The get_attributes_from_claims function was only checking for top-level
claim keys, causing token validation to fail when using nested claims
like "resource_access.llamastack.roles" (common in Keycloak JWT tokens).

Updated the function to support dot notation for traversing nested claim
structures. Give precedence to dot notation over literal keys with dots
in claims mapping.

Added test coverage.

Closes: #3812

@meta-cla meta-cla bot added the CLA Signed This label is managed by the Meta Open Source bot. label Oct 15, 2025
@derekhiggins
Copy link
Contributor Author

Note: This would break the case where the top level key is an actual string with a ".", I'm wondering do we need to support both cases?

@ehhuang Graphite App
Copy link
Contributor

ehhuang commented Oct 16, 2025

Note: This would break the case where the top level key is an actual string with a ".", I'm wondering do we need to support both cases?

can you add a validation to the config class?

@derekhiggins
Copy link
Contributor Author

Note: This would break the case where the top level key is an actual string with a ".", I'm wondering do we need to support both cases?

can you add a validation to the config class?

I'm not sure what could be validated at config/startup. We won't see the claims to know which it is until runtime, I can think of 3 options

  1. Support only nested keys with dot's (this PR)
  2. Adding an explicit config option to enable/disable dot notation traversal
  3. Try nested keys first, then fall back to literal key if nested traversal fails (support both with precedence)

@ashwinb
Copy link
Contributor

ashwinb commented Oct 16, 2025

Any thoughts here @grs and @leseb? Outside my area of expertise!

@grs
Copy link
Contributor

grs commented Oct 17, 2025

I can think of 3 options

  1. Support only nested keys with dot's (this PR)
  2. Adding an explicit config option to enable/disable dot notation traversal
  3. Try nested keys first, then fall back to literal key if nested traversal fails (support both with precedence)

I think option 3 is the best. Option 2 is ugly and pushes the problem into configuration. Option 1, i.e. not supporting dots in keys at all, seems too drastic.

I think we could consider the dotted form and nested form 'equivalent'. It seems very unlikely that a given token would have separate claims, one nested and another with the equivalent dotted key, especially with different values.

Supporting both does not require much more code and will 'just work' in every likely case.

@derekhiggins
fix: nested claims mapping in OAuth2 token validation
fc16b95 
The get_attributes_from_claims function was only checking for top-level
claim keys, causing token validation to fail when using nested claims
like "resource_access.llamastack.roles" (common in Keycloak JWT tokens).

Updated the function to support dot notation for traversing nested claim
structures. Give precedence to dot notation over literal keys with dots
in claims mapping.

Added test coverage.

Closes: llamastack#3812

Signed-off-by: Derek Higgins <derekh@redhat.com>
@derekhiggins
Copy link
Contributor Author

I can think of 3 options

  1. Support only nested keys with dot's (this PR)
  2. Adding an explicit config option to enable/disable dot notation traversal
  3. Try nested keys first, then fall back to literal key if nested traversal fails (support both with precedence)

I think option 3 is the best. Option 2 is ugly and pushes the problem into configuration. Option 1, i.e. not supporting dots in keys at all, seems too drastic.

I think we could consider the dotted form and nested form 'equivalent'. It seems very unlikely that a given token would have separate claims, one nested and another with the equivalent dotted key, especially with different values.

Supporting both does not require much more code and will 'just work' in every likely case.

thanks @grs , I've updated the PR to support both with precedence to dot notation

grs
grs approved these changes Oct 18, 2025
View reviewed changes
Copy link
Contributor

@grs grs left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ashwinb ashwinb Awaiting requested review from ashwinb ashwinb is a code owner

@yanxi0830 yanxi0830 Awaiting requested review from yanxi0830 yanxi0830 is a code owner

@hardikjshah hardikjshah Awaiting requested review from hardikjshah hardikjshah is a code owner

@raghotham raghotham Awaiting requested review from raghotham raghotham is a code owner

@ehhuang ehhuang Awaiting requested review from ehhuang ehhuang is a code owner

@terrytangyuan terrytangyuan Awaiting requested review from terrytangyuan terrytangyuan is a code owner

@leseb leseb Awaiting requested review from leseb leseb is a code owner

@bbrowning bbrowning Awaiting requested review from bbrowning bbrowning is a code owner

@reluctantfuturist reluctantfuturist Awaiting requested review from reluctantfuturist reluctantfuturist is a code owner

@mattf mattf Awaiting requested review from mattf mattf is a code owner

@slekkala1 slekkala1 Awaiting requested review from slekkala1 slekkala1 is a code owner

@franciscojavierarceo franciscojavierarceo Awaiting requested review from franciscojavierarceo franciscojavierarceo is a code owner

1 more reviewer

@grs grs grs approved these changes

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

CLA Signed This label is managed by the Meta Open Source bot.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

OAuth2 Token Validation Fails with Nested Claims

4 participants

@derekhiggins @ehhuang @ashwinb @grs