Currently, I pass some additional querystring parameters to the hosted login url by using my own properties on the options object passed to the
authorize method and just live with the console warnings that they generate.
However, in looking through the whitelisted parameters:
I see “claims” as being whitelisted which appears to allow me to pass an object (list of name-value pairs, in my case) that has been serialized to JSON and I am able to then access them in the auth0 rules. This also eliminates the warnings I’m getting.
I am not finding any information anywhere to indicate if I’m doing something disastrous here, or not. Am I?