Re: [Dev] Mandatory Claims in OAuth 2.0 with Identity Server 5.3.0

2017-02-21 Thread Dinuksha Ishwari 
Hi Nuwandi,

Thank you for the instructions. Got it resolved. I have written a blog post
about this as well. (http://dinukshaish.blogspot.
com/2017/02/mandatory-claims-in-oauth-20-with.html).

Thanks and regards,
Dinuksha

On Mon, Feb 20, 2017 at 9:47 AM, Nuwandi Wickramasinghe 
wrote:

> Hi Dinusha,
>
> This could happen because these two local claims 
> (*http://wso2.org/claims/organization
> * and *http://wso2.org/claims/givenname
> *) are not mapped  in oidc claim
> dialect. To get rid of this issue, please try the following.
>
> 1. Go to *List* under *Claims* in IS Management Console *Main* tab.
> 2. Click on *http://wso2.org/oidc/claim *
> 3. Click Edit on *given_name *and pick *http://wso2.org/claims/givenname
> * from *Mapped Local Claim *drop down.
> 4. Update claim.
> 5. Add new claim with the name *Organization *in oidc claim dialect and
> map it to *http://wso2.org/claims/organization
> .* (Check "Add External Claim" in [1]
> )
>
> After the claim mapping is done, mandatory claims should be picked
> correctly from the local profile.
>
> [1] https://docs.wso2.com/display/IS530/Adding+Claim+Mapping
>
> regards
> Nuwandi
>
>
> On Mon, Feb 20, 2017 at 8:23 AM, Dinuksha Ishwari <
> dinuksha.ishw...@gmail.com> wrote:
>
>> Hi Devs,
>>
>> I have set up IS 5.3.0 and tried out the OAuth 2.0 authorization code
>> grant type with Playground2 sample.
>>
>> In the Service Provider’s claim configuration, I added couple of claims
>> (local claim dialect) and marked all of them as ‘mandatory’.
>>
>>
>> In the user profile, I have added values for all of these claims which
>> were defined in SP’s claim config.
>>
>>
>> When I try out the authorization code grant type with Playground2 sample,
>> after the authentication step I see the following where it says the user’s
>> profile is missing the two claims ‘Organization’ and ‘GivenName’.
>>
>>
>> But these claims are already set in user’s profile. Once I fill the
>> claims, the flow works as expected and I’m able to receive the user’s
>> requested claims.
>>
>> Any thoughts why it says these claims are missing in the profile although
>> I have set those claims in the user profile already ?
>>
>>
>> Thank you,
>> Dinuksha.
>>
>> ___
>> Dev mailing list
>> Dev@wso2.org
>> http://wso2.org/cgi-bin/mailman/listinfo/dev
>>
>>
>
>
> --
>
> Best Regards,
>
> Nuwandi Wickramasinghe
>
> Software Engineer
>
> WSO2 Inc.
>
> Web : http://wso2.com
>
> Mobile : 0719214873
>
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

Re: [Dev] Mandatory Claims in OAuth 2.0 with Identity Server 5.3.0

2017-02-19 Thread Nuwandi Wickramasinghe 
Hi Dinusha,

This could happen because these two local claims
(*http://wso2.org/claims/organization
* and *http://wso2.org/claims/givenname
*) are not mapped  in oidc claim dialect.
To get rid of this issue, please try the following.

1. Go to *List* under *Claims* in IS Management Console *Main* tab.
2. Click on *http://wso2.org/oidc/claim *
3. Click Edit on *given_name *and pick *http://wso2.org/claims/givenname
* from *Mapped Local Claim *drop down.
4. Update claim.
5. Add new claim with the name *Organization *in oidc claim dialect and map
it to *http://wso2.org/claims/organization
.* (Check "Add External Claim" in [1])

After the claim mapping is done, mandatory claims should be picked
correctly from the local profile.

[1] https://docs.wso2.com/display/IS530/Adding+Claim+Mapping

regards
Nuwandi


On Mon, Feb 20, 2017 at 8:23 AM, Dinuksha Ishwari <
dinuksha.ishw...@gmail.com> wrote:

> Hi Devs,
>
> I have set up IS 5.3.0 and tried out the OAuth 2.0 authorization code
> grant type with Playground2 sample.
>
> In the Service Provider’s claim configuration, I added couple of claims
> (local claim dialect) and marked all of them as ‘mandatory’.
>
>
> In the user profile, I have added values for all of these claims which
> were defined in SP’s claim config.
>
>
> When I try out the authorization code grant type with Playground2 sample,
> after the authentication step I see the following where it says the user’s
> profile is missing the two claims ‘Organization’ and ‘GivenName’.
>
>
> But these claims are already set in user’s profile. Once I fill the
> claims, the flow works as expected and I’m able to receive the user’s
> requested claims.
>
> Any thoughts why it says these claims are missing in the profile although
> I have set those claims in the user profile already ?
>
>
> Thank you,
> Dinuksha.
>
> ___
> Dev mailing list
> Dev@wso2.org
> http://wso2.org/cgi-bin/mailman/listinfo/dev
>
>


-- 

Best Regards,

Nuwandi Wickramasinghe

Software Engineer

WSO2 Inc.

Web : http://wso2.com

Mobile : 0719214873
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev

[Dev] Mandatory Claims in OAuth 2.0 with Identity Server 5.3.0

2017-02-19 Thread Dinuksha Ishwari 
Hi Devs,

I have set up IS 5.3.0 and tried out the OAuth 2.0 authorization code grant
type with Playground2 sample.

In the Service Provider’s claim configuration, I added couple of claims
(local claim dialect) and marked all of them as ‘mandatory’.


In the user profile, I have added values for all of these claims which were
defined in SP’s claim config.


When I try out the authorization code grant type with Playground2 sample,
after the authentication step I see the following where it says the user’s
profile is missing the two claims ‘Organization’ and ‘GivenName’.


But these claims are already set in user’s profile. Once I fill the claims,
the flow works as expected and I’m able to receive the user’s requested
claims.

Any thoughts why it says these claims are missing in the profile although I
have set those claims in the user profile already ?


Thank you,
Dinuksha.
___
Dev mailing list
Dev@wso2.org
http://wso2.org/cgi-bin/mailman/listinfo/dev