Adding additional claims to access_token (asp.net core 3.1 mvc)

jorlee · May 21, 2020, 7:50pm

Thanks @andy.carter! That’s perfect!

For anybody else interested, if you apply the rule in Andy’s reply, this is what the access token then looks like:

{
  "alg": "RS256",
  "typ": "JWT",
  "kid": "Oh3auIcHF7FKoi_maBqKe"
}.{
  "https://blah.namespace.com/email": "test@contoso.com",
  "iss": "https://blah.au.auth0.com/",
  "sub": "auth0|5ebb0ff83873a20be682a54b",
  "aud": [
    "https://api.blah.net",
    "https://blah.au.auth0.com/userinfo"
  ],
  "iat": 1590089834,
  "exp": 1590176234,
  "azp": "2wDvZX5y1vXRj70U37hIzezV2IPDqgbt",
  "scope": "openid profile"
}.[Signature]

In the API, you can then extract the email with the following code:

var email = User.Claims.FirstOrDefault(c => c.Type == "https://blah.namespace.com/email").Value;

Cheers!

Topic		Replies	Views
access_token not added as claim on the ClaimsIdentity after login to asp.net app Get Help .net , access-token	9	12432	March 2, 2018
Use API access token to Authorize in .net Core MVC? Get Help	3	3454	October 28, 2021
Add roles to the access token Get Help	7	25042	October 28, 2019
Creating a login endpoint for asp.net api JWT.io jwt , auth0 , api	5	4456	December 17, 2018
How to get the user identifier in an ASP.NET Core API? Get Help jwt , user_id	2	41920	March 2, 2018

Adding additional claims to access_token (asp.net core 3.1 mvc)

Related topics