Mappers with token exchange do not saves custom attributes

Alex7 · October 21, 2019, 8:23am

Hello,

Social login using token exchange does not save attributes when the login is made using the following post request:

/auth/realms/{realmName}/protocol/openid-connect/token

client_id: web_app
client_secret: ****
grant_type: urn:ietf:params:oauth:grant-type:token-exchange
subject_token: github_user_token
subject_issuer: github

It saves the attributes correspondingly when the login is made from the browser accessing the: /auth/realms/{realmName}/account/applications

Am I missing something?

Thanks!

carrot-hub · October 14, 2020, 2:08pm

Hi, can I ask if you managed to solve this issue?

I’m facing same problem on jboss/keycloak:10.0.2

Alex7 · October 14, 2020, 3:31pm

Unfortunately, I couldn’t find a working solution using KeyCloak API.

I used Firebase authentication with a middleware filter that verifies, if token is valid create a new user or get the existing user from database, if not throw invalid credentials.

If you use Spring Boot you can find a working solution at https://github.com/gladius/firebase-spring-boot-rest-api-authentication

carrot-hub · October 14, 2020, 3:45pm

Thanks man, appreciate your response.

kkcmadhu · October 20, 2020, 7:36am

we solved it by writng custom mappers (keycloak spi)

Alex7 · October 21, 2021, 8:34am

Hi, @kkcmadhu !

Can you provide a code example?

Thanks!

Topic		Replies	Views
Custom AccessTokenResponse attributes Extending the server authentication	2	1220	May 15, 2020
Resolving authenticators used	0	348	September 22, 2020
Token Exchange don't work when cross realm authentication , oidc	0	105	March 28, 2023
Keycloak-js: Manually set token	0	542	January 7, 2022
Token exchange error with an exchanged token as subject token Getting advice authentication , oidc	1	501	December 5, 2023

Mappers with token exchange do not saves custom attributes

Related Topics