You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Ensure client supplied user id hint matches session user.
If the sub claim or id_token_hint is supplied then the session user must match the given ID.
Normally in Django the session user is looked up by middleware and accessed via request.user. When the OAuthLib.common.Request is created the user is not preserved. Is there a recommended way to add the session user to the OAuthLib.common.Request?
The text was updated successfully, but these errors were encountered:
I'm working on implementing silent login on Django. The documentation says...
per https://oauthlib.readthedocs.io/en/latest/oauth2/oidc/validator.html#oauthlib.openid.RequestValidator.validate_silent_login
,
Normally in Django the session user is looked up by middleware and accessed via request.user. When the OAuthLib.common.Request is created the user is not preserved. Is there a recommended way to add the session user to the OAuthLib.common.Request?
The text was updated successfully, but these errors were encountered: