Retrieve persons data after login #2709
-
Hi, I tried to use the users access-token to query the api EDIT: I get that it's supposed to be a JWT token but first why? and second what am I supposed to encrypt? It's a plain GET request so what's the payload of the JWT token? |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments 13 replies
-
You shouldn't be encrypting anything, the JWT that comes back as the value of Example from the Python lib's here. |
Beta Was this translation helpful? Give feedback.
-
if you’re doing it with OAuth, what scopes are you requesting.
…On 2024-04-16 21:51 Timo Kramer wrote:
sorry for not being clear enough... on the server I am retrieving the token-introspection data after the users login... on the server I need to read the legalname, how would I do that if I can not read it with the oauth token? Would you log in with an admin account from the server and then read the persons metadata?
—
Reply to this email directly, view it on GitHub <#2709 (reply in thread)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AABJB7ABKWOJGSMXQ6SEPELY5UGD3AVCNFSM6AAAAABGHIMJPGVHI2DSMVQWIX3LMV43SRDJONRXK43TNFXW4Q3PNVWWK3TUHM4TCMRZGMYDG>.
You are receiving this because you commented.Message ID: ***@***.***>
|
Beta Was this translation helpful? Give feedback.
Yep, if users need to see and edit their own full account details they'll need to authenticate against the Kanidm API, not OAuth/OIDC.