Affects Version/s: 7.2.1 CE GA2
Fix Version/s: None
Component/s: Application Security > OpenID Connect
When using OpenId Connect with MS ADFS, the step getting userInfo fails because MS ADFS doesn't deliver any information in response to userInfo request...
The previous steps of the openId connect protocols are OK : we obtains a valid authentication from ADFS, with all the mandatory tokens.
The resolution seems to use id_token shipped informations instead of calling userInfo.
The impacted code is around : https://github.com/liferay/liferay-portal/blob/7.2.x/modules/apps/portal-security-sso/portal-security-sso-openid-connect-impl/src/main/java/com/liferay/portal/security/sso/openid/connect/internal/OpenIdConnectServiceHandlerImpl.java#L174