Action Trigger on login does not add custom field email to acces token

dev30 · November 12, 2021, 3:29pm

I configured my action trigger - on login like that:

exports.onExecutePostLogin = async (event, api) => {
  api.accessToken.setCustomClaim('email', event.user.email);
};

I deployed it and add it to the flow. In logs everything is fine. I successfully made a post registration action but login action actually doesn’t modify access token.
So to be confident that I test it correctly I’ ve added a similar rule:

function addEmailToAccessToken(user, context, callback) {
  context.accessToken['email'] = user.email;
  return callback(null, user, context);
}

And it works great.
I think it’s some kind of a bug of an action trigger functionality.

rueben.tiow · November 12, 2021, 5:33pm

Hi @dev30,

Thanks for reaching out to the Auth0 Community!

I understand that you’re having issues getting the Post-Login Action script to append custom claims to your access token.

After looking at your code snippet, it appears that you did not specify a namespace to append your custom claim. Read Create Custom Claims for more details.

Given that, I recommend that you do something like the following in your Post Login Action script:

exports.onExecutePostLogin = async (event, api) => {
  const namespace = 'https://my-app.example.com';
  if (event.authorization) {
    api.accessToken.setCustomClaim(`${namespace}/email`, event.user.email);
  }
};

There is also a add user roles to tokens example use-case which you might find helpful.

Hoped this helps!

Please let me know if you have any further questions.

Thank you.

system · November 27, 2021, 5:34pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.