Hi Maduranga, I have created the issue [1] to track the mentioned issue.
I am trying to implement the MP-JWT 1.0 spec [2] and they have introduced a new claim named 'upn' which should be mapped to the user principal which is similar to the 'sub' claim which already exists in the OIDC dialect. 'sub' claim is already mapped to the local claim 'username' and the 'upn' also should be the 'username' since it is the user principal. I am trying to understand the correct way to map these two claims. [1] - https://github.com/wso2/product-is/issues/3069 [2] - https://www.eclipse.org/community/eclipse_newsletter/2017/september/article2.php Regards, Madawa On Wed, Apr 11, 2018 at 9:20 PM, Maduranga Siriwardena <madura...@wso2.com> wrote: > Hi Madawa, > > This should be restricted from UI, admin service and claim-config.xml > file. If you can do this from file, please create a git issue to track the > issue. > > Can you please explain the use case behind mapping a local claim URI to > multiple external claim URIs. > > Thanks, > Maduranga. > > On Wed, Apr 11, 2018 at 2:25 PM, Madawa Soysa <mada...@wso2.com> wrote: > >> Hi All, >> >> $subject is not allowed when creating an external claim from the UI. >> However, it is possible to map the same claim URI to multiple external >> claims by adding the claim entry to claim-config.xml >> >> Have we restricted this from the UI due to a specific reason? What is the >> correct method to achieve $subject. >> >> Regards, >> Madawa >> -- >> >> Madawa Soysa / Software Engineer >> mada...@wso2.com / +94714616050 >> >> *WSO2 Inc.* >> lean.enterprise.middleware >> >> <https://wso2.com/signature> >> >> >> >> > > > -- > Maduranga Siriwardena > Senior Software Engineer > WSO2 Inc; http://wso2.com/ > > Email: madura...@wso2.com > Mobile: +94718990591 > Blog: *https://madurangasiriwardena.wordpress.com/ > <https://madurangasiriwardena.wordpress.com/>* > <http://wso2.com/signature> > -- Madawa Soysa / Software Engineer mada...@wso2.com / +94714616050 *WSO2 Inc.* lean.enterprise.middleware <https://wso2.com/signature>
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
