Openbravo Issue Tracking System - POS2
View Issue Details
IDProjectCategoryView StatusDate SubmittedLast Update
0057859POS2Corepublic2025-02-04 15:262025-02-07 11:10
Reportereugen_hamuraru 
Assigned Toeugen_hamuraru 
PrioritynormalSeverityminorReproducibilityhave not tried
StatusclosedResolutionfixed 
PlatformOS5OS Version
Product Version 
Target VersionFixed in Version 
Merge Request Statusapproved
Review Assigned To
OBNetwork customerNo
Support ticket
Regression level
Regression date
Regression introduced in release
Regression introduced by commit
Triggers an Emergency PackNo
Summary0057859: OpenId connect use a different token claim from email to identify the user
DescriptionCurrently, the OpenID Connect (OIDC) authentication flow in Openbravo uses the user’s email address (extracted from the token) to identify the user. ADEO requires the system to transition to identifying users using the Openbravo user search key, which aligns with their LDAP system. This search key is included in the token as the sub claim, a registered JWT (JSON Web Token) claim
Steps To ReproduceN/A
Proposed Solution
Additional Information
TagsNo tags attached.
Relationships
related to feature request 0055992 closed cberner Openbravo ERP Parts of OpenIDAuthentication API should be exposed to extending classes to facilitate data retrieval 
related to feature request 0055941 closed njimenez POS2 Login and approvals in pos with oauth2 
related to defect 0052839 closed caristu Openbravo ERP Extensible authentication provider infrastructure 
Attached Files
Issue History
Date ModifiedUsernameFieldChange
2025-02-04 15:26eugen_hamuraruNew Issue
2025-02-04 15:26eugen_hamuraruAssigned To => eugen_hamuraru
2025-02-04 15:26eugen_hamuraruOBNetwork customer => No
2025-02-04 15:26eugen_hamuraruTriggers an Emergency Pack => No
2025-02-04 15:44hgbotMerge Request Status => open
2025-02-04 15:44hgbotNote Added: 0175110
2025-02-06 16:49hgbotNote Added: 0175233
2025-02-06 17:53caristuRelationship addedrelated to 0055992
2025-02-06 17:54caristuRelationship addedrelated to 0055941
2025-02-06 17:55caristuRelationship addedrelated to 0052839
2025-02-07 10:59hgbotMerge Request Statusopen => approved
2025-02-07 11:01hgbotResolutionopen => fixed
2025-02-07 11:01hgbotStatusnew => closed
2025-02-07 11:01hgbotFixed in Version => PR25Q2
2025-02-07 11:01hgbotNote Added: 0175283
2025-02-07 11:01hgbotNote Added: 0175284
2025-02-07 11:01hgbotNote Added: 0175285
2025-02-07 11:01hgbotNote Added: 0175286
2025-02-07 11:10hgbotNote Added: 0175290

Notes
(0175110)
hgbot   
2025-02-04 15:44   
Merge Request created: https://gitlab.com/orisha-group/bu-commerce/openbravo/product/openbravo/-/merge_requests/1519 [^]
(0175233)
hgbot   
2025-02-06 16:49   
Merge Request created: https://gitlab.com/orisha-group/bu-commerce/openbravo/ci/backoffice-api/-/merge_requests/96 [^]
(0175283)
hgbot   
2025-02-07 11:01   
Directly closing issue as related merge request is already approved.

Repository: https://gitlab.com/orisha-group/bu-commerce/openbravo/product/openbravo [^]
Changeset: 2643d7444832945d7d0f7ff156901b1e1ab52366
Author: Carlos Aristu <c.aristu@orisha.com>
Date: 07-02-2025 11:00:07
URL: https://gitlab.com/orisha-group/bu-commerce/openbravo/product/openbravo/-/commit/2643d7444832945d7d0f7ff156901b1e1ab52366 [^]

fixes FR-57859: Configurable token claim in OpenID authentication

---
A src-test/src/org/openbravo/authentication/oauth2/OpenIDAuthenticationManagerTest.java
A src/org/openbravo/authentication/oauth2/UserByClaimFinder.java
M src-db/database/model/tables/C_AUTH_PROVIDER_OAUTH2.xml
M src-db/database/sourcedata/AD_AUXILIARINPUT.xml
M src-db/database/sourcedata/AD_COLUMN.xml
M src-db/database/sourcedata/AD_ELEMENT.xml
M src-db/database/sourcedata/AD_FIELD.xml
M src-db/database/sourcedata/AD_MESSAGE.xml
M src-test/src/org/openbravo/test/StandaloneTestSuite.java
M src-test/src/org/openbravo/test/base/mock/HttpServletRequestMock.java
M src-test/src/org/openbravo/test/dal/IssuesTest.java
M src/org/openbravo/authentication/oauth2/OAuth2TokenAuthenticationManager.java
M src/org/openbravo/authentication/oauth2/OpenIDAuthenticationManager.java
---
(0175284)
hgbot   
2025-02-07 11:01   
Repository: https://gitlab.com/orisha-group/bu-commerce/openbravo/ci/backoffice-api [^]
Changeset: 15a9def696f2bd074472be92ca04fa354e937c7c
Author: Eugen Hamuraru <eugen.hamuraru@openbravo.com>
Date: 07-02-2025 10:01:48
URL: https://gitlab.com/orisha-group/bu-commerce/openbravo/ci/backoffice-api/-/commit/15a9def696f2bd074472be92ca04fa354e937c7c [^]

relaed to FR-57859: update message search key

---
M model/src-db/database/sourcedata/AD_MESSAGE.xml
---
(0175285)
hgbot   
2025-02-07 11:01   
Merge request merged: https://gitlab.com/orisha-group/bu-commerce/openbravo/ci/backoffice-api/-/merge_requests/96 [^]
(0175286)
hgbot   
2025-02-07 11:01   
Merge request merged: https://gitlab.com/orisha-group/bu-commerce/openbravo/product/openbravo/-/merge_requests/1519 [^]
(0175290)
hgbot   
2025-02-07 11:10   
Repository: https://gitlab.com/orisha-group/bu-commerce/openbravo/product/openbravo [^]
Changeset: aa85d6344eedda9cf9b14606f9dce82d255dbf91
Author: Carlos Aristu <c.aristu@orisha.com>
Date: 07-02-2025 11:10:07
URL: https://gitlab.com/orisha-group/bu-commerce/openbravo/product/openbravo/-/commit/aa85d6344eedda9cf9b14606f9dce82d255dbf91 [^]

related to FR-57859: use example domain

---
M src-test/src/org/openbravo/authentication/oauth2/OpenIDAuthenticationManagerTest.java
---