ADX-1017 attempt to refresh user profile data using silent authentica… #283
Conversation
…es to pt_PT using Google Translate
|
|
||
| # return redirect('http://adr.local/user/edit/admin') | ||
| # return jsonify({"message": "Silent authentication initiated.", "args": request.args, "silent_response": silent_response.text}) | ||
| return redirect(auth_url) |
There was a problem hiding this comment.
We should use here 'Auth0 Management API'.
Please use https://auth0.com/docs/api/management/v2#!/Users/get_users_by_id endpoint. Include only following fields: email,user_metadata. To get user_id please run action user_show with parameter include_plugin_extras set to true for current user. This way you'll get plugin_extras, where for saml2auth you'll get saml_id which is user_id in Auth0.
You can copy code I used in APE to get management_token and access Management API.
Domain is same as for APE. I'll send you client_id, and client_secret via slack. They should be added as new variables to adx_config (as before).
There was a problem hiding this comment.
This is a great solution, we need to :
Configure Auth0 to send user_id as a SAML attribute
Configure adx_config.ini to map saml_id in ADR
We are running out of time so I'll ask Tomek tomorrow
kforenc
force-pushed
the
ADX-1009_seamless_integration_with_adr
branch
from
473cb69
to
d744b08
Compare
|
Since this is a lot of work, we decided not to do it. Instead we did #291 |
kforenc
deleted the
ADX-1017-updating-adr-fields-to-reflect-latest-ape-profile-data
branch
Description
Use Auth0 silent Authentication to update user profile data
Checklist
Put an
xin the boxes that apply to this pull request (you can also fill these out after opening the pull request).You may not need to check all boxes.