From 2b307e275ab56054da77550e665428752f9921d2 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=C3=89loi=20Rivard?= Date: Sun, 3 Oct 2021 20:26:47 +0200 Subject: [PATCH] Fixed introspection sub claim. Fix #64 --- canaille/oauth2utils.py | 5 +++-- tests/test_token_introspection.py | 2 +- 2 files changed, 4 insertions(+), 3 deletions(-) diff --git a/canaille/oauth2utils.py b/canaille/oauth2utils.py index 481bdb95..8d186c3c 100644 --- a/canaille/oauth2utils.py +++ b/canaille/oauth2utils.py @@ -243,13 +243,14 @@ class IntrospectionEndpoint(_IntrospectionEndpoint): def introspect_token(self, token): client_id = Client.get(token.oauthClient).oauthClientID + user = User.get(dn=token.oauthSubject) return { "active": True, "client_id": client_id, "token_type": token.oauthTokenType, - "username": User.get(dn=token.oauthSubject).name, + "username": user.name, "scope": token.get_scope(), - "sub": token.oauthSubject, + "sub": user.uid[0], "aud": client_id, "iss": authorization.metadata["issuer"], "exp": token.get_expires_at(), diff --git a/tests/test_token_introspection.py b/tests/test_token_introspection.py index 74877a9f..ccf40fb1 100644 --- a/tests/test_token_introspection.py +++ b/tests/test_token_introspection.py @@ -14,7 +14,7 @@ def test_token_introspection(testclient, user, client, token): "token_type": token.oauthTokenType, "username": user.name, "scope": token.get_scope(), - "sub": token.oauthSubject, + "sub": user.uid[0], "aud": client.oauthClientID, "iss": "https://mydomain.tld", "exp": token.get_expires_at(),