From 38b983c2a51ff1866e3306896a9e5e960bbe984b Mon Sep 17 00:00:00 2001 From: phil Date: Sat, 8 Feb 2025 19:05:13 +0100 Subject: [PATCH] Fix scope --- src/oidc_test/main.py | 19 +++++-------------- 1 file changed, 5 insertions(+), 14 deletions(-) diff --git a/src/oidc_test/main.py b/src/oidc_test/main.py index 81b354f..03d13d7 100644 --- a/src/oidc_test/main.py +++ b/src/oidc_test/main.py @@ -95,20 +95,9 @@ async def home( resources = [] oidc_provider_settings = None - if user is None: - access_token_scope = None - else: - try: - access_token_scope = user.get_scope(verify_signature=False) - except InvalidTokenError as err: - access_token_scope = None - logger.info("Invalid token") - logger.exception(err) - context = { "settings": settings.model_dump(), "user": user, - "access_token_scope": access_token_scope, "now": now, "oidc_provider": oidc_provider, "oidc_provider_settings": oidc_provider_settings, @@ -124,13 +113,15 @@ async def home( assert oidc_provider is not None assert oidc_provider.name is not None oidc_provider_settings = oidc_providers_settings[oidc_provider.name] + access_token_parsed = oidc_provider_settings.decode( + token["access_token"], verify_signature=False + ) + context["access_token_scope"] = access_token_parsed["scope"] # context["id_token_parsed"] = pretty_details(user, now) context["id_token_parsed"] = oidc_provider_settings.decode( token["id_token"], verify_signature=False ) - context["access_token_parsed"] = oidc_provider_settings.decode( - token["access_token"], verify_signature=False - ) + context["access_token_parsed"] = access_token_parsed context["refresh_token_parsed"] = oidc_provider_settings.decode( token["refresh_token"], verify_signature=False )