Products | Versions |
---|---|
Spotfire Server | 10.9 and higher |
Since the OpenID claims likely contain personal data (PII), and may contain other security-sensitive information, they are not logged by default in the TIBCO Spotfire Server server.log. If TRACE logging is enabled prior to TIBCO Spotfire Server 10.9, Spotfire logs the names of available claims in OpenID Connect ID tokens and UserInfo endpoint responses.
Refer to KB 000041759 How to find the supported claims in Identity provider that can be used in TIBCO Spotfire Server OpenID Configuration to find the supported claims in Identity provider that can be used in TIBCO Spotfire Server OpenID configuration.
>config.bat export-config
>config.bat set-config-prop --name=security.oidc.log-claim-values --value=true
>config.bat import-config -c "Enabled logging of Claims values"