lordwelch/aws-oidc
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add groups claim

Browse Source
This commit is contained in:
Jeremy Stott 2019-04-15 23:36:11 +12:00
parent 653521ed9f
commit 0235ceaa79
1 changed files with 8 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
provider/provider.go
View File

@ -38,6 +38,7 @@ type TokenClaims struct {
Picture string `json:"picture"` Picture string `json:"picture"`
Email string `json:"email"` Email string `json:"email"`
EmailVerified bool `json:"email_verified"` EmailVerified bool `json:"email_verified"`
Groups []string `json:"groups"`
} }
func Authenticate(p *ProviderConfig) (Result, error) { func Authenticate(p *ProviderConfig) (Result, error) {
@ -68,7 +69,7 @@ func Authenticate(p *ProviderConfig) (Result, error) {
ClientSecret: p.ClientSecret, ClientSecret: p.ClientSecret,
Endpoint: provider.Endpoint(), Endpoint: provider.Endpoint(),
RedirectURL: redirectURL, RedirectURL: redirectURL,
Scopes: []string{oidc.ScopeOpenID, "profile", "email"}, Scopes: []string{oidc.ScopeOpenID, "profile", "email", "groups"},
} }
stateData := make([]byte, 32) stateData := make([]byte, 32)