-
Notifications
You must be signed in to change notification settings - Fork 2
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ADX-1017 attempt to refresh user profile data using silent authentica… #283
ADX-1017 attempt to refresh user profile data using silent authentica… #283
Conversation
…es to pt_PT using Google Translate
|
||
# return redirect('http://adr.local/user/edit/admin') | ||
# return jsonify({"message": "Silent authentication initiated.", "args": request.args, "silent_response": silent_response.text}) | ||
return redirect(auth_url) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We should use here 'Auth0 Management API'.
Please use https://auth0.com/docs/api/management/v2#!/Users/get_users_by_id endpoint. Include only following fields: email,user_metadata
. To get user_id
please run action user_show
with parameter include_plugin_extras
set to true
for current user. This way you'll get plugin_extras, where for saml2auth
you'll get saml_id
which is user_id
in Auth0.
You can copy code I used in APE to get management_token and access Management API.
Domain is same as for APE. I'll send you client_id
, and client_secret
via slack. They should be added as new variables to adx_config (as before).
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is a great solution, we need to :
Configure Auth0 to send user_id as a SAML attribute
Configure adx_config.ini to map saml_id in ADR
We are running out of time so I'll ask Tomek tomorrow
473cb69
to
d744b08
Compare
Since this is a lot of work, we decided not to do it. Instead we did #291 |
Description
Use Auth0 silent Authentication to update user profile data
Checklist
Put an
x
in the boxes that apply to this pull request (you can also fill these out after opening the pull request).You may not need to check all boxes.