/users/me doesn't return all the profile attributes

phi1ipp · April 26, 2020, 1:17pm

Has anybody experienced the same or know the explanation to the followings:

when I use API to get a user profile with /api/v1/users/{{user_id}} as admin user, I get all the attributes from the profile
when I use CORS API to get my profile with /api/v1/users/me as admin user, I get all (I think, haven’t thoroughly checked) the attributes from the profile
when I use CORS API to get my profile as non-admin user, I get only subset of attributes, while other ones (even populated) are not sent back in a response

Ironhide · April 27, 2020, 7:35am

This seems to work as intended?
When calling the Okta API with a token (which you can generate through the UI), the user who generated the token permission’s are token over. It also checks the user’s current permission so if the user lost admin for example the token basically becomes useless.

This is why it is a good idea to let service accounts generate API tokens.

phi1ipp · April 27, 2020, 11:10am

I’m talking here about CORS calls, made from the browser. Those ones do not use API token

Post		Replies	Views
Get user profile data using pure javascript? Questions	2	5886	February 20, 2019
How to access /api/v1/users/me from Okta Angular Serivice Questions	4	5781	March 4, 2019
Custom Profile Attributes not Included in getUser response OAuth/OIDC	7	1614	March 20, 2024
Unable to get User through /api/v1/users/${userId} API api , reactjs , react	2	3156	October 15, 2022
Get User information including Custome attributes API	2	6250	August 23, 2017

/users/me doesn't return all the profile attributes

Related topics