How to switch-off additional claims check in policy enforcer adapter?

ertu · June 17, 2022, 9:47am

Is there a way to tell the policy enforcer adapter to ignore claimInformationPointConfig in application.properties?
Or the other way around: How to ignore additional claims in the RPT token?

When policy enforcer sees this claims in the RPT token it tries to evaluate them and also to send an additional request to keycloak.
How to stop this behaviour?

edwint88 · June 17, 2022, 10:08am

I have more or less the same problem, for me with this additional request the internal URL is changed for public URL (How to setup a client to use the backend URL instead of the frontend URL?). Do you have the same problem ?

ertu · June 17, 2022, 11:46am

The additional request I am referring to is from the policy enforcer to keycloak. So I think, I dont have the same issue.

Topic		Replies	Views
Access Denied when adding claims to RPT token Extending the server	0	407	June 10, 2022
How to configure ClaimInformationPoint to call external REST API in SpringBoot application.properties file Securing applications	1	574	June 18, 2021
Using policy enforcer with {request.body['/someAttribute']} claim on path removes body from request	0	311	October 13, 2022
Disabling token issuer check and consequences Getting advice saml	3	4496	July 24, 2020
Policy enforcer without roles in token Getting advice	2	614	July 11, 2020

How to switch-off additional claims check in policy enforcer adapter?

Related topics