Oracle Access Manager (OAM) OAuth /oauth2/rest/userinfo Not Returning All LDAP Attribute Info
(Doc ID 2896477.1)
Last updated on JULY 20, 2023
Applies to:
Oracle Access Manager - Version 12.2.1.4.0 and laterInformation in this document applies to any platform.
Symptoms
- Setup OIDC-based OAuth client.
- Accessing rest api '/oauth2/rest/userinfo' returned access_token with limited info.
- The LDAP user profile has additional/custom attributes but, those attributes are unable to view in the JSON info response.
Steps followed to reproduce the issue
1. Create sample OAuth Identity Domain, 'sample-oauth-2'
2. Create sample Resource & scope as, 'resource.READ'
3. Create sample OAuth client, with grant-type 'AUTHORIZATION_CODE'
4. Initiate Authorization Call as below.
Executed steps provided in the following documentation
| REST API for OAuth in Oracle Access Manager | UserInfo details for OIDC flows |
| Administering Oracle Access Management, 36 Understanding OpenIDConnect, 36.3 OpenIDConnect Authentication Flows in Oracle Access Manager | 36.3.3 Understanding OpenIDConnect UserInfo Endpoint |
As per above documentation, the Authentication Module 'LDAPNoPasswordValidationScheme' pointing to IDS Store profile.
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |