Adding user roles to access token

chris.tice · January 5, 2023, 6:27am

What I ended up doing is using a custom Action with the Management API to query for a users direct roles, and adding the list of roles to the token as a custom claim.

exports.onExecutePostLogin = async (event, api) => {
  const ManagementClient = require('auth0').ManagementClient;
  const management = new ManagementClient({
      domain: event.secrets.domain,
      clientId: event.secrets.clientId,
      clientSecret: event.secrets.clientSecret,
  });

  const namespace = 'my-namespace';
  try {
    // Get the list of global roles for a user
    const roles = await management.getUserRoles({
      id: event.user.user_id,
    });

    const roleNames = roles.map((role) => role.name);

    api.idToken.setCustomClaim(`${namespace}/globalRoles`, roleNames);
    api.accessToken.setCustomClaim(`${namespace}/globalRoles`, roleNames);
  } catch (e) {
    console.log(e);
  }
};

Topic		Replies	Views
Add List user's organizations id and roles to the token Help	4	3051	June 8, 2022
Adding user permission to the id-token Help management-api , roles , user-management	2	5518	March 23, 2023
Roles not added to token Help user-profile , user-management	10	136	July 29, 2024
How to Add Roles and Permissions to the ID Token Using Actions Knowledge Articles id_token , roles , access-token , permissions , extensibility , actions	1	23077	June 2, 2022
How to add permissions to the access token (Actions) [Edit] Help auth0 , management-api , login	3	3009	January 8, 2024

Adding user roles to access token

Related Topics