Created on 15 May 2021, over 3 years ago
Updated 4 March 2024, 10 months ago

Problem/Motivation

I'm quite new to your module and have only basic knowledge about drupel, i'm using your module to use aws cognito to authrize user, so far so good, it works. the user in the aws user pool are organized in groups/roles thaht can be retrieved with Access Token Payload

https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-using-tokens-with-identity-providers.html

{
"sub": "aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee",
"device_key": "aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee",
"cognito:groups": [
"admin"
],

"token_use": "access",
"scope": "aws.cognito.signin.user.admin",
"auth_time": 1562190524,
"iss": "https://cognito-idp.us-west-2.amazonaws.com/us-west-2_example",
"exp": 1562194124,
"iat": 1562190524,
"jti": "aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee",
"client_id": "57cbishk4j24pabc1234567890",
"username": "janedoe@example.com"
}

if it's possible to get that informtaions with your module ?
could you give some short advices where and how to start ?
i would like to debug auth provider could they easly be debugged ?

thanks a lot !

Lars

Steps to reproduce

Proposed resolution

Remaining tasks

User interface changes

API changes

Data model changes

💬 Support request
Status

Closed: works as designed

Version

1.0

Component

Documentation

Created by

🇩🇪Germany lblabr

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

Not all content is available!

It's likely this issue predates Contrib.social: some issue and comment data are missing.

  • Sorry for opening this issue.

    Can the code above (#4) be used directly in a custom module (where the access token is used as a Bearer to access a API), or do I need to add some extra code in order to work outside of the OIDC module?

  • 🇧🇪Belgium matthijs

    It should be usable everywhere, the only requirement is a valid oidc session.

Production build 0.71.5 2024