From a2f20df9c91ba9f000cdbd5cde05676aebbc15b0 Mon Sep 17 00:00:00 2001 From: Darcy Ye Date: Wed, 20 Mar 2024 14:35:08 +0800 Subject: [PATCH] chore: add comments --- packages/core/src/libraries/jwt-customizer.ts | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/packages/core/src/libraries/jwt-customizer.ts b/packages/core/src/libraries/jwt-customizer.ts index 34f13c6f1..2e1d73e7b 100644 --- a/packages/core/src/libraries/jwt-customizer.ts +++ b/packages/core/src/libraries/jwt-customizer.ts @@ -21,6 +21,12 @@ export const createJwtCustomizerLibrary = ( const { findUserRoles } = userLibrary; const { attachResourceToScopes } = scopeLibrary; + /** + * We does not include org roles' scopes for the following reason: + * 1. The org scopes query method requires `limit` and `offset` parameters. Other management API get + * these APIs from console setup while this library method is a backend used method. + * 2. Logto developers can get the org roles' id from this user context and hence query the org roles' scopes via management API. + */ const getUserContext = async (userId: string): Promise => { const user = await findUserById(userId); const fullSsoIdentities = await userSsoIdentities.findUserSsoIdentitiesByUserId(userId);