How can I access custom user properties in my custom action?

I have the same issue. I’m using custom attributes on the user profile to store custom claims obtain during saml login when Auth0 plays the role of the Service Provider.

After the SAML login is done I have a rule that processes the custom SAML claims that were stored as custom attributes on the user profile.

I tried to migrate my rules to actions but I’m stuck since the custom user attributes are not populated on the user object in an action.

This is a very bad limitation of actions. Maybe it’s just an oversight ?

Can someone from auth0 confirm this and inform the engineers of the issue so it can be fixed soon ?
Until then I see no way why I would migrate to actions since in the current state they are inferior to rules in term of functionality.

1 Like

Did you have a fix on this issue? Challenging a relative issue yet no response from anyone and couldn’t see this point taking a gander at in google.

master roles are related to access of the user so can’t you just put in app_metadata like
this

app_metadata = {
   "master_roles" : ["admin",..]
}

No, the user object doesn’t come from Auth0 but from my OIDC provider. This provider doesn’t care or know about Auth0’s app_metadata.

I saw in another thread last year that this request was passed to the engineering department (that people want identity provider data in actions), but I guess it still hasn’t been implemented?

This is actually something that seems a perfect usage for actions. Due to the nature of our business, we have a lot of different clients with their own enterprise connections of various types (AAD, SAML, etc.). If we can access this data in an action, we can normalize any metadata that we need to act on in our API. Right now we are manually dealing with it in API code, but it’d be much better to keep differences related to specific provider data in Auth0 itself. We might just create a rule for now, but I’d hope this feature will be implemented before rules are fully phased out, or else a lot of people will be in trouble!

This is also a blocker for us preventing from migrating from rules to actions.
We need to access custom attributes set by SAML providers during an action without calling the management API to avoid rate limits.
I asked the auth0 support about it. This is the response I got on January 28th, 2022.

Hello,

Thanks for contacting Auth0 Support today.

We are very aware of the current “feature gap” between Rules/Hooks and Actions. We are working towards a final release but progress has been delayed due to the need to complete other major engineering projects.

We are now working towards a release of the remaining Actions capabilities in Q2, though this may change if any higher priority tasks emerge.

Rest assured, customers have will have plenty of time to fully migrate Rules to Actions.

Regards,

Can you share some news about it ? We really want to migrate to actions but right now we can’t because of this.

@dan.woda @konrad.sopala Do you have some news to share about when the limitations referenced at Actions Limitations will have a proper solution ?

For this topic, we are especially interested by the last one “Top-level event.user attributes added by an external IdP or custom database script”

Thanks !

Hi @vb1,

I can reach out to the team and will update here when I have a response. For expectations, I would expect a response Monday at the earliest.

Just checking in as another user looking to get this functionality working… Have there been any updates on this issue?

Thanks!

@hayner,

I don’t have an update/ETA for this. It is an identified issue and is in our backlog.

Hello @dan.woda
Now that the actions have been released officially has this feature been prioritized ?
Currently we still can’t acces “Top-level event.user attributes added by an external IdP or custom database script” as per the documentation
This is a total blocker to migrate to actions.
Thanks

Hi @vb1,

Thank you for reaching out. The status is the same as the last time I posted. I’ll update this thread when I have new information.

Thank you for your patience.

Hi Dan,

I was wondering, whether this has already been implemented.

Kind regards

@maximilian.mantz

Look like this one is still in the backlog.

Hi all, please make sure you are clicking the “Vote” button for this topic if you are interested in seeing it implemented.

This is becoming more urgent as the scheduled deprecation of Rules will break our third party SSO login flow (only currently works with Rules). Can we get an update on whether this is scheduled for development before the deprecation?

5 Likes

Hello community!

Thanks for the feedback and interest. We are looking into unlocking create custom attributes for my users and store data on the user object by bringing SAML mapping to Actions by Q2 2023. We will be updating our changelog and Auth0 document when it becomes available.

Thanks

6 Likes

It is also critical that my organization can access top-level user attributes from within Actions. We will be unable to migrate off of Rules until this enhancement is in production and anxiously await its deployment.

1 Like

I’ll add to the votes for top level attributes here. Specifically we’re using an Enterprise Google Workspace connection and would like to drive our role based access from the groups specified in the GSuite.

Any updates on this feature?