Openid connect roles

faxmodem · March 3, 2020, 4:09pm

How can I get rid of the following message:

Failed to get roles from JWT claims with roles_key 'roles'. Check if this key is correct and available in the JWT payload.

I don’t want to use roles from openid

jkressin · March 6, 2020, 2:25pm

You just need to remove the roles_key setting from sg_config.completely, e.g.:

  jwt_auth_domain:
    http_enabled: true
    order: 1
    http_authenticator:
      type: jwt
      challenge: false
      config:
        signing_key: "..."
        jwt_header: "Authorization"
        roles_key: roles   <---- remove
        subject_key: username
    authentication_backend:
      type: noop

faxmodem · March 11, 2020, 4:28pm

that did the trick, thanks!

system · April 1, 2020, 4:28pm

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
JWT roles from nested key Search Guard	3	595	February 28, 2020
JWT Plugin does not extract roles correctly Search Guard	4	408	August 16, 2017
JWT token in Searchguard Search Guard	1	465	March 12, 2019
Roles not evaluated - in jwt Search Guard	6	437	November 30, 2017
JWT clarification Search Guard	6	306	October 23, 2017

Openid connect roles

Related Topics