diff --git a/server/modules/authentication/oidc/authentication.js b/server/modules/authentication/oidc/authentication.js index 11b7aac9..f443de05 100644 --- a/server/modules/authentication/oidc/authentication.js +++ b/server/modules/authentication/oidc/authentication.js @@ -19,7 +19,8 @@ module.exports = { issuer: conf.issuer, userInfoURL: conf.userInfoURL, callbackURL: conf.callbackURL, - passReqToCallback: true + passReqToCallback: true, + skipUserProfile: conf.skipUserProfile }, async (req, iss, uiProfile, idProfile, context, idToken, accessToken, refreshToken, params, cb) => { const profile = Object.assign({}, idProfile, uiProfile) diff --git a/server/modules/authentication/oidc/definition.yml b/server/modules/authentication/oidc/definition.yml index 4ec22e79..2062a7ee 100644 --- a/server/modules/authentication/oidc/definition.yml +++ b/server/modules/authentication/oidc/definition.yml @@ -37,40 +37,46 @@ props: title: User Info Endpoint URL hint: User Info Endpoint URL order: 5 + skipUserProfile: + type: Boolean + default: false + title: Skip User Profile + hint: Skips call to the OIDC UserInfo endpoint + order: 6 issuer: type: String title: Issuer hint: Issuer URL - order: 6 + order: 7 emailClaim: type: String title: Email Claim hint: Field containing the email address default: email maxWidth: 500 - order: 7 + order: 8 displayNameClaim: type: String title: Display Name Claim hint: Field containing the user display name default: displayName maxWidth: 500 - order: 8 + order: 9 mapGroups: type: Boolean title: Map Groups hint: Map groups matching names from the groups claim value default: false - order: 9 + order: 10 groupsClaim: type: String title: Groups Claim hint: Field containing the group names default: groups maxWidth: 500 - order: 10 + order: 11 logoutURL: type: String title: Logout URL hint: (optional) Logout URL on the OAuth2 provider where the user will be redirected to complete the logout process. - order: 11 + order: 12