Issue is happening intermittently and seemingly at no specific interval.
Admin user is impersonating another user, when the user-info endpoint is hit with the impersonated access_token, some details are correct and some are wrong.
Response from user info when incorrect:
`{
'sub': '{redacted}', //impersonator's (admin user's)
'email': '{redacted}@{redacted}.com', //the impersonated user's (correct)
'loyalty_access_token': '{redacted}', //impersonator's (admin user's)
'first_name': '{redacted}', //the impersonated user's (correct)
'last_name': '{redacted}', //the impersonated user's (correct)
'phone_number': '{redacted}' //the impersonated user's (correct)
}`
Reached out to Microsoft support with no assistance since the issue is intermittent.
Cannot replicate reliably.
Have enabled logging in the system and confirmed these issues happen at varying times / cases.
Expectation is the impersonation access_token supplied to the user info endpoint will always be correct when passed through.
Joseph Freitas is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.