From f8fb48fb32f2dfe5714c62e6818357f5161a775a Mon Sep 17 00:00:00 2001
From: hsluoyz <hsluoyz@qq.com>
Date: Mon, 1 May 2023 15:32:34 +0800
Subject: [PATCH] fix: cannot connect to Casdoor SSO (close #4266 in #4274)

---
 server/handles/ssologin.go | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/server/handles/ssologin.go b/server/handles/ssologin.go
index e9da8c74..b1deead8 100644
--- a/server/handles/ssologin.go
+++ b/server/handles/ssologin.go
@@ -51,7 +51,7 @@ func SSOLoginRedirect(c *gin.Context) {
 		case "Casdoor":
 			endpoint := strings.TrimSuffix(setting.GetStr(conf.SSOEndpointName), "/")
 			r_url = endpoint + "/login/oauth/authorize?"
-			urlValues.Add("scope", "read")
+			urlValues.Add("scope", "profile")
 			urlValues.Add("state", endpoint)
 		default:
 			common.ErrorStrResp(c, "invalid platform", 400)
@@ -103,8 +103,11 @@ func SSOLoginCallback(c *gin.Context) {
 		case "Casdoor":
 			endpoint := strings.TrimSuffix(setting.GetStr(conf.SSOEndpointName), "/")
 			url1 = endpoint + "/api/login/oauth/access_token"
-			url2 = endpoint + "/account"
+			url2 = endpoint + "/api/userinfo"
+			additionalbody = "&grant_type=authorization_code"
+			scope = "profile"
 			authstring = "code"
+			idstring = "preferred_username"
 		default:
 			common.ErrorStrResp(c, "invalid platform", 400)
 			return