PASOE Properties (attributes) from an accepted JWT (introspection) are not loaded into the C-P

orombauts

New Member
PASOE is performing an token introspection (crf. oauth2.opaqueToken.introspectionUri). The token is accepted and the client principle login-state is set to SSO, meaning the C-P got sealed. So far so good.

However, following claims are not available as properties on the C-P object in ABL (SESSION:CURRENT-REQUEST-INFO:GETCLIENTPRINCIPAL() + LIST-PROPERTY-NAMES() returns none).

scope
iss
name
given_name
family_name
email

I experimented with options like OEClientPrincipalFilter.loadAccntAttrList in the oeablSecurity.properties file, but I did not succeed to get the properties I want to consult in ABL code.

Documentation mentions '<misc> (if configured)', I do not fully understand how to interpret that.

How can I achieve my goal?

Many thanks in advance!
 
Back
Top