Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-14743

Fix wording around how supported claim/scope is displayed on the consent page

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Not a defect
    • Affects Version/s: 13.5.0, 5.5.1, 6.0.0, 6.5.0
    • Fix Version/s: None
    • Component/s: None
    • Labels:

      Description

      Bug description

      _Fix wording around how supported claim/scope is displayed on the consent page _

      How to reproduce the issue

      1. Configure OpenID Connect ([Realm] -> [Configure OAuth Provider] -> [Configure OpenID Connect] )
      2. In OpenAM 13.0.0: Create an OAuth 2 agent called myClientID ([Realm] -> [Agents] -> [OAuth2.0/OpenID Connect Client] )
        In AM 6.x: Create an OAuth 2 agent called myClientID ([Realm] -> [Applications] -> [OAuth2.0] )
      3. Configure the following in myClientID agent configuration:
        [Core] tab --> Redirection URIs : http://www.google.com
        [Core] tab --> Scope(s): openid profile
        In AM 6.5.x: Allow implicit grant ([Realm] -> [Applications] -> [OAuth2.0] -> [OAuth2.0 Name] -> [Advanced] )
      4. Configure the following in OAuth2Provider configuration ([Realm] -> [Services] -> [OAuth2 Provider] ):
        [Advanced] tab -> Supported Scopes: profile| (remove description "Your personal information")
        [OpenID Connect] tab -> Supported Claims: name| (remove description "Full name") family_name| (remove description "Full name")
      5. Accessing the URL to get the access token
        http://am.example.com:8080/openam/oauth2/authorize?client_id=myClientID&redirect_uri=http://www.google.com&response_type=id_token&scope=openid%20profile&nonce=1234
      6. Enter user credentials
      Expected behaviour
      Mentioned in (OpenAM 13, Reference & AM 6.5, OpenID Connect 1.0 Guide documentation) for Supported claims Attribute: 
      If the description is also omitted, nothing is displayed on the consent page for the claim. For example specifying family_name|would allow the claim family_name to be used by the client, but would not display it to the user on the consent page when requested.
      
      This online help suggests that the value from requested scope/claims will not be displayed on the consent page. However, what it means is that LABEL derived from supported scope/claim's description will be empty. This bug/RFE is to request to change the wording slightly so it's less confusing to users.
      Current behaviour
      It's confusing to the user why scope/claims are being displayed with blank label (img1 from OPENAM-14694).
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                sachiko Sachiko Wallace
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: