Scope and Claims parameters are not forwarded to another OIDC provider from Keycloak server
Question
Just started to work with Keycloak. I created an Identity Provider, setup everything and when client performs openid request it successfully goes to my provider backend through keycloak. But scope field is fully replaced with 'Default claims' in provider settings and doesn't contain requested claims. I created a client scope and put it in 'optional list', so it should be sent if requested by client but it doesn't help. What can be a problem?
Also I have a question about claims parameter, now I found that in realm configuration “claims_parameter_supported”:false. is it possible to configure it?
1 answers
solution1
0 2019-11-27 01:29:35
What can be a problem?
You need to add your client scope to "Assigned Optional Client Scopes" on "Client Scopes" page of your client. You can check if it works as expected on the page which is shown after clicking "Evaluate" sub tab.
Also I have a question about claims parameter, now I found that in realm configuration “claims_parameter_supported”:false. is it possible to configure it?
Keycloak has not supported it yet. Please refer to this ticket .
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.