From b737cba35e59255904eccae9e9de1cbd36284fb1 Mon Sep 17 00:00:00 2001
From: Elias Schneider <login@eliasschneider.com>
Date: Mon, 10 Mar 2025 14:23:04 +0100
Subject: [PATCH] fix: error while signing in with OIDC if roles claim is
 undefined

---
 backend/src/oauth/provider/genericOidc.provider.ts | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/backend/src/oauth/provider/genericOidc.provider.ts b/backend/src/oauth/provider/genericOidc.provider.ts
index 8c94571..2c99ab3 100644
--- a/backend/src/oauth/provider/genericOidc.provider.ts
+++ b/backend/src/oauth/provider/genericOidc.provider.ts
@@ -149,7 +149,10 @@ export abstract class GenericOidcProvider implements OAuthProvider<OidcToken> {
       // A path to read roles from the token is configured
       let roles: string[] = [];
       try {
-        roles = jmespath.search(idTokenData, roleConfig.path);
+        const rolesClaim = jmespath.search(idTokenData, roleConfig.path);
+        if (Array.isArray(rolesClaim)) {
+          roles = rolesClaim;
+        }
       } catch (e) {
         this.logger.warn(
           `Roles not found at path ${roleConfig.path} in ID Token ${JSON.stringify(