Add user email and roles in access token only for a specific app

kevin.lescouarnec · September 6, 2023, 3:24pm

Hello everyone
My company has a Auth0 organization with multiple applications in it.
I would like to add user email and roles in the access token but only for a specific app. I added these fields with Auth0 Actions but it impacts all applications of the organization.
How can I do that ?
Thanks a lot for your help.

kevin.lescouarnec · September 26, 2023, 8:55pm

There is no solution for this common use case ?

tyf · September 26, 2023, 9:04pm

Hey there @kevin.lescouarnec welcome to the community!

You should be able to do this by adding some logic to an action to check for the application (client_id) and add the roles to the access token accordingly. It might look something like this:

exports.onExecutePostLogin = async (event, api) => {
  // Replace YOUR_CLIENT_ID with the actual Client ID of your specific application
  const targetClientId = 'YOUR_CLIENT_ID';
  
  if (event.client.clientID !== targetClientId) {
    // Not the target client, so we don't modify the token
    return;
  }
  
  const assignedRoles = event.authorization.roles;

  api.accessToken.setCustomClaim('http://namespace/roles', assignedRoles);
};

system · October 10, 2023, 9:04pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Add role to a user Help jwt , auth0 , login	4	6189	September 3, 2019
How to add email to access token using auth0 action Post-login event Help emails , management-api	3	1377	November 15, 2023
Add List user's organizations id and roles to the token Help	4	3053	June 8, 2022
Add Roles/Claims to the access token via Login Flow Help login-experience , new-universal-login-experience	2	273	April 15, 2024
How to add permissions to the access token (Actions) [Edit] Help auth0 , management-api , login	3	3011	January 8, 2024

Add user email and roles in access token only for a specific app

Related topics