Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

BUG - Endpoint GET /oauth/refresh is not returning passport permissions #723

Open
leoraba opened this issue Jun 29, 2023 · 1 comment
Open
Assignees
Labels
bug Something isn't working ITCR-Passport

Comments

@leoraba
Copy link
Contributor

leoraba commented Jun 29, 2023

Steps how to reproduce the issue:

Prerequisites: Have an active login session in Ego with a user registered with a Passport broker:

  1. EGO JWT token
  2. EGO refresh token cookie stored in browser as refreshId

Steps:
Call POST /oauth/refresh (using POSTMAN)
Header:
Cookie: refreshId=[REFRESH_TOKEN_HERE]
Authorization: bearer [EGO_TOKEN_HERE]

Expected Response:

  • a new EGO JWT token that includes scopes based on passport permission.
  • a new EGO refresh token

Actual response:

  • a new EGO JWT token that does not include scopes based on passport permission.
  • a new EGO refresh token

Tentative solution:
use refresh token provided by Passport broker instead of the usual EGO refresh token

Endpoint used by:
platform-api and workflow-ui

@leoraba leoraba added the bug Something isn't working label Jun 29, 2023
@leoraba leoraba self-assigned this Jun 29, 2023
leoraba added a commit that referenced this issue Jun 29, 2023
@leoraba
Copy link
Contributor Author

leoraba commented Jun 29, 2023

PR #718

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
bug Something isn't working ITCR-Passport
Projects
None yet
Development

No branches or pull requests

1 participant