How to get an access token and id token both in token response?

By: balas alab user 13 Mar 2019 at 1:40 a.m. CDT

3 Responses
balas alab gravatar
I changed the client configuration setting **Access Token as JWT: True** I got a response with id token in access_token parameter Response : { "access_token": "eyJraWQiOiIzYWQ1ZGY5YS.....Hy0h20saBzy9GipO4e2ZwCLtV_Jm0lSXVirknQmiRNkQw6p2z5ci5093lXcvc3pc4qlqpBmFkaUiQ", "token_type": "bearer", "expires_in": 3599, "refresh_token": "8ec7ed5e-b382-47e2-a37d-7ff486c8fe52", "scope": "openid profile uma_protection email" } But i need both value in response, access token and id token also. And when i try to decode the id_token it not contain any user information and scope. How to get user information in id token? kindly provide the solution. Thanks
Ubuntu 18.04
closed

Answers

By Michael Schwartz Account Admin 17 Mar 2019 at 7:11 p.m. CDT

Copy
Michael Schwartz gravatar
User claims are not required in the `id_token`, per [OpenID Connect spec ](https://openid.net/specs/openid-connect-core-1_0.html#IDToken) ``` ID Tokens MAY contain other Claims. ``` If you want user claims in the id_token, use the feature in Gluu for "legacy id token claims" in the JSON config for oxAuth. I'm not sure what values you are looking for in the access token. Please be more specific.

By balas alab user 18 Mar 2019 at 1:44 a.m. CDT

Copy
balas alab gravatar
Hi Michael, I tried to get id_token in **password** Grant Type flow but i am not getting id_token. I can able to get id_token in **authorization_code** Grant Type flow. How to i get id_token in **passowrd** Grant Type? Thanks,

By Yamil Díaz Aguirre user 18 Jun 2019 at 4:57 p.m. CDT

Copy
Yamil Díaz Aguirre gravatar
You are using the Resource Owner Password Grant -- grant_type=password -- that is an OAuth flow, not an OpenID Connect flow. id_token (an identity assertion, like a SAML assertion) is only available if you use the implicit, code, or hybrid flows defined here. BTW, RO PW Grant is the anti-pattern.

Post an answer