From 65083113b178202e4c435fdbb32205d23404a16d Mon Sep 17 00:00:00 2001
From: Patrick Uiterwijk <puiterwijk@redhat.com>
Date: Oct 06 2016 10:59:02 +0000
Subject: Fix OpenID Connect plugin claims


The claims list in extensions is a list, but we need to add the values
to a dict of claims requested.

Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
Reviewed-by: Pierre-Yves Chibon <pingou@pingoured.fr>

---

diff --git a/ipsilon/providers/openidc/auth.py b/ipsilon/providers/openidc/auth.py
index 0386fa6..5f7ff7a 100644
--- a/ipsilon/providers/openidc/auth.py
+++ b/ipsilon/providers/openidc/auth.py
@@ -347,9 +347,8 @@ class Authorization(AuthenticateRequest):
         for n, e in self.cfg.extensions.available().items():
             data = e.get_claims(request_data['scope'])
             self.debug('%s returned %s' % (n, repr(data)))
-            if len(data) > 0:
-                # pylint: disable=invalid-sequence-index
-                request_data['claims']['userinfo'].extend(data)
+            for claim in data:
+                request_data['claims']['userinfo'][claim] = None
 
         # Store data so we can continue with the request
         us = UserSession()