feat: Fetch OIDC claims in the pipeline #5157

New Issue

Closed

opened 2025-11-11 16:13:27 -06:00 by GiteaMirror · 1 comment

GiteaMirror commented 2025-11-11 16:13:27 -06:00

Owner

Copy Link

Originally created by @aakritichoudhary on GitHub (May 13, 2025).

Check Existing Issues

• I have searched the existing issues and discussions.

Problem Description

I am using OpenWebUI v0.6.5 with OIDC OAuth for SSO. I want to fetch my OIDC claims in the pipeline.
My inlet looks like -

 async def inlet(self, body: dict, user: dict) -> dict:
        # This function is called before the OpenAI API request is made. You can modify the form data before it is sent to the OpenAI API.
        print(f"inlet:{__name__}")
        print(f"UserInlet: {user}")
        return body

Output Log of the pipeline -

inlet:test-aakriti

UserInlet: {'id': '<some-encrypted-id>', 'email': '<my-email>', 'name': '<my-name>', 'role': 'admin'}
//---returned body (but no OIDC claims)---

Claims passed in the .env -

OAUTH_USERNAME_CLAIM=firstName
OAUTH_EMAIL_CLAIM=email
OAUTH_ID_CLAIM=uid
OIDC_SCOPES=openid profile LDAPGroups

Desired Solution you'd like

I would want to return all the scopes and claims passed in the user inlet. One way I tried was to modify the inlet code in the open-webui code (not the pipeline code), but that did not help.
Please let me know if there are any other issues that I can look to, have looked at most of them but no luck.
TIA!

Alternatives Considered

No response

Additional Context

No response

Originally created by @aakritichoudhary on GitHub (May 13, 2025). ### Check Existing Issues - [x] I have searched the existing issues and discussions. ### Problem Description I am using OpenWebUI v0.6.5 with OIDC OAuth for SSO. I want to fetch my OIDC claims in the pipeline. My inlet looks like - ``` async def inlet(self, body: dict, user: dict) -> dict: # This function is called before the OpenAI API request is made. You can modify the form data before it is sent to the OpenAI API. print(f"inlet:{__name__}") print(f"UserInlet: {user}") return body ``` Output Log of the pipeline - ``` inlet:test-aakriti UserInlet: {'id': '<some-encrypted-id>', 'email': '<my-email>', 'name': '<my-name>', 'role': 'admin'} //---returned body (but no OIDC claims)--- ``` Claims passed in the .env - ``` OAUTH_USERNAME_CLAIM=firstName OAUTH_EMAIL_CLAIM=email OAUTH_ID_CLAIM=uid OIDC_SCOPES=openid profile LDAPGroups ``` ### Desired Solution you'd like I would want to return all the scopes and claims passed in the user inlet. One way I tried was to modify the inlet code in the open-webui code (not the pipeline code), but that did not help. Please let me know if there are any other issues that I can look to, have looked at most of them but no luck. TIA! ### Alternatives Considered _No response_ ### Additional Context _No response_

GiteaMirror closed this issue 2025-11-11 16:13:27 -06:00

GiteaMirror commented 2025-11-11 16:13:28 -06:00

Author

Owner

Copy Link

@aakritichoudhary commented on GitHub (May 14, 2025):

Modified few files to get claims via the GET /api/v1/auths endpoint, but only extra field that is coming is oauth_sub, not other field. If I can get other OIDC claims in this endpoint, it will be helpful.

@aakritichoudhary commented on GitHub (May 14, 2025): Modified few files to get claims via the ```GET /api/v1/auths``` endpoint, but only extra field that is coming is oauth_sub, not other field. If I can get other OIDC claims in this endpoint, it will be helpful.

GiteaMirror referenced this issue 2025-11-11 17:56:26 -06:00

[PR #5157] [MERGED] 0.3.18 #8426

GiteaMirror referenced this issue 2025-11-11 17:56:35 -06:00

[PR #5180] [MERGED] dev #8433

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

dev

backend-outlet

v0.8.10

v0.8.9

v0.8.8

v0.8.7

v0.8.6

v0.8.5

v0.8.4

v0.8.3

v0.8.2

v0.8.1

v0.8.0

v0.7.2

v0.7.1

v0.7.0

v0.6.43

v0.6.42

v0.6.41

v0.6.40

v0.6.39

v0.6.38

v0.6.37

v0.6.36

v0.6.35

v0.6.34

v0.6.33

v0.6.32

v0.6.31

v0.6.30

v0.6.29

v0.6.28

v0.6.27

v0.6.26

v0.6.25

v0.6.24

v0.6.23

v0.6.22

v0.6.21

v0.6.20

v0.6.19

v0.6.18

v0.6.17

v0.6.16

v0.6.15

v0.6.14

v0.6.13

v0.6.12

v0.6.11

v0.6.10

v0.6.9

v0.6.8

v0.6.7

v0.6.6

v0.6.5

v0.6.4

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.20

v0.5.19

v0.5.18

v0.5.17

v0.5.16

v0.5.15

v0.5.14

v0.5.13

v0.5.12

v0.5.11

v0.5.10

v0.5.9

v0.5.8

v0.5.7

v0.5.6

v0.5.5

v0.5.4

v0.5.3

v0.5.2

v0.5.1

v0.5.0

v0.4.8

v0.4.7

v0.4.6

v0.4.5

v0.4.4

v0.4.3

v0.4.2

v0.4.1

v0.4.0

v0.3.35

v0.3.34

v0.3.33

v0.3.32

v0.3.31

v0.3.30

v0.3.29

v0.3.28

v0.3.27

v0.3.26

v0.3.25

v0.3.24

v0.3.23

v0.3.22

v0.3.21

v0.3.20

v0.3.19

v0.3.18

v0.3.17

v0.3.16

v0.3.15

v0.3.14

v0.3.13

v0.3.12

v0.3.11

v0.3.10

v0.3.9

v0.3.8

v0.3.7

v0.3.6

v0.3.5

v0.3.4

v0.3.3

v0.3.2

v0.3.1

v0.3.0

v0.2.5

v0.2.4

v0.2.3

v0.2.2

v0.2.1

v0.2.0

v0.1.125

v0.1.124

v0.1.123

v0.1.122

v0.1.121

v0.1.120

v0.1.119

v0.1.118

v0.1.117

v0.1.116

v0.1.115

v0.1.114

v0.1.113

v0.1.112

v0.1.111

v0.1.110

v0.1.109

v0.1.108

v0.1.107

v0.1.106

v0.1.105

v0.1.104

v0.1.103

v0.1.102

Labels

Clear labels

bug

core

documentation

enhancement

good first issue

help wanted

non-core

pull-request

Mirrored from GitHub Pull Request

python

question

testing wanted

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/open-webui#5157