Hi All,
I have been investigating the code over the past few days. I have seen that a PR has been made to make the userinfo endpoint the only source for claims.
We are only able to directly control the id_token itself from Azure. This means that reliance on the userinfo endpoint completely cripples us in terms of implementing SSO.
Is there anyone that can add code to make the source of claims variable via config, and/or allow a preference for userinfo vs the id_token?
We have made as many changes as we can on our side to date, but anything else is impossible.
I appreciate any comments anyone can give towards this.
Thanks