@@ -105,7 +105,7 @@ def _update_meta(self, token_info: dict) -> None:
105105 Args:
106106 token_info(dict): {
107107 'iss': 'str', # issuer (spaceone.identity)
108- 'rol': 'str', # role type
108+ 'rol': 'str', # role type (SYSTEM_TOKEN | DOMAIN_ADMIN | WORKSPACE_OWNER | WORKSPACE_MEMBER | USER )
109109 'typ': 'str', # token type (ACCESS_TOKEN | REFRESH_TOKEN | CLIENT_SECRET)
110110 'own': 'str', # owner (USER | APP)
111111 'did': 'str', # domain_id
@@ -116,6 +116,7 @@ def _update_meta(self, token_info: dict) -> None:
116116 'jti': 'str', # jwt id (token_key | client_id), Optional
117117 'permissions': 'list', # permissions, Optional
118118 'projects': 'list', # project_ids, if workspace member, Optional
119+ 'user_groups': 'list', # user_group_ids, if workspace owner or member, Optional
119120 'injected_params': 'dict', # injected parameters, override parameters, Optional
120121 'ver': 'str', # jwt version
121122 """
@@ -128,6 +129,7 @@ def _update_meta(self, token_info: dict) -> None:
128129 workspace_id = token_info .get ("wid" )
129130 permissions = token_info .get ("permissions" )
130131 projects = token_info .get ("projects" )
132+ user_groups = token_info .get ("user_groups" )
131133 injected_params = token_info .get ("injected_params" )
132134
133135 self .transaction .set_meta ("authorization.token_type" , token_type )
@@ -138,6 +140,7 @@ def _update_meta(self, token_info: dict) -> None:
138140 self .transaction .set_meta ("authorization.workspace_id" , workspace_id )
139141 self .transaction .set_meta ("authorization.permissions" , permissions )
140142 self .transaction .set_meta ("authorization.projects" , projects )
143+ self .transaction .set_meta ("authorization.user_groups" , user_groups )
141144 self .transaction .set_meta ("authorization.injected_params" , injected_params )
142145
143146 if owner_type == "USER" :
0 commit comments