Comments (5)
mitch-tofi
commented on July 17, 2024
Adding to this ticket is a workaround:
Create this class:
public class ConfigureJwtBearerOptions : IPostConfigureOptions<JwtBearerOptions>
{
public void PostConfigure(string name, JwtBearerOptions options)
{
options.SecurityTokenValidators.Clear();
options.SecurityTokenValidators.Add(new JwtSecurityTokenHandler()
{
MapInboundClaims = true
});
}
}
Add this to the services collection:
services.AddSingleton<IPostConfigureOptions<JwtBearerOptions>, ConfigureJwtBearerOptions>();
from identityserver4.accesstokenvalidation.
leastprivilege
commented on July 17, 2024
Why do you want to map claims to Microsoft proprietary values? Doesn't make sense.
from identityserver4.accesstokenvalidation.
mitch-tofi
commented on July 17, 2024
Some libraries by default rely on NameIdentifier (http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier)
eg
https://docs.microsoft.com/en-us/aspnet/core/signalr/groups?view=aspnetcore-3.1
Not saying that their proprietary values make sense, and there is a work around so perhaps that should be part of the documentation?
from identityserver4.accesstokenvalidation.
leastprivilege
commented on July 17, 2024
Yes - it should be part of Microsoft's documentation.
from identityserver4.accesstokenvalidation.
mitch-tofi
commented on July 17, 2024
Ok.
Well I hope other people who run into this issue can see this ticket and help them with any issues this may cause from them.
Updated Title to reflect the issue.
from identityserver4.accesstokenvalidation.
Related Issues (20)
- Does IdentityServer4.AccessTokenValidation only works in IdentityServer 4 ? HOT 5
- IConfigureOptions<IdentityServerAuthenticationOptions>.Configure() isn't automatically called. HOT 7
- Expose OAuth2IntrospectionEvents in IdentityServerAuthenticationOptions HOT 1
- Exception does not show anything in logs ( try/finally)-IdentityServerAuthenticationHandler HOT 4
- Why are IdentityServerAuthenticationDefaults internal? HOT 1
- Does it work with .net framework 4.7.2? HOT 2
- Support opaque tokens with a dot when used together with JWT HOT 4
- when i upgrade to identitymode version 4 HOT 4
- v3.0.0版本中仍然使用了preview组件
- Is .NETStandard still supported? HOT 3
- Spelling error on documentation comment HOT 2
- Send extra parameters on reference token validation HOT 4
- How to delete a reference token from API in distributed cache? HOT 2
- How does caching (reference token validation) work? I need to invalidate cache when user resets the password. Please help. HOT 3
- IdentityServer4.AccessTokenValidation: The SSL connection could not be established HOT 5
- Any reason why updated version of this library can't stay .netstandard20 or 21? HOT 3
- Get ServiceProvider inside AddOpenIdConnect without BuildServiceProvider HOT 1
- Unable to configure httpClient of HttpDocumentRetriever. HOT 2
- Automatic scope validation? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from identityserver4.accesstokenvalidation.