I have the same issue. I’m using custom attributes on the user profile to store custom claims obtain during saml login when Auth0 plays the role of the Service Provider.
After the SAML login is done I have a rule that processes the custom SAML claims that were stored as custom attributes on the user profile.
I tried to migrate my rules to actions but I’m stuck since the custom user attributes are not populated on the user object in an action.
This is a very bad limitation of actions. Maybe it’s just an oversight ?
Can someone from auth0 confirm this and inform the engineers of the issue so it can be fixed soon ?
Until then I see no way why I would migrate to actions since in the current state they are inferior to rules in term of functionality.
I saw in another thread last year that this request was passed to the engineering department (that people want identity provider data in actions), but I guess it still hasn’t been implemented?
This is actually something that seems a perfect usage for actions. Due to the nature of our business, we have a lot of different clients with their own enterprise connections of various types (AAD, SAML, etc.). If we can access this data in an action, we can normalize any metadata that we need to act on in our API. Right now we are manually dealing with it in API code, but it’d be much better to keep differences related to specific provider data in Auth0 itself. We might just create a rule for now, but I’d hope this feature will be implemented before rules are fully phased out, or else a lot of people will be in trouble!
This is also a blocker for us preventing from migrating from rules to actions.
We need to access custom attributes set by SAML providers during an action without calling the management API to avoid rate limits.
I asked the auth0 support about it. This is the response I got on January 28th, 2022.
Hello,
Thanks for contacting Auth0 Support today.
We are very aware of the current “feature gap” between Rules/Hooks and Actions. We are working towards a final release but progress has been delayed due to the need to complete other major engineering projects.
We are now working towards a release of the remaining Actions capabilities in Q2, though this may change if any higher priority tasks emerge.
Rest assured, customers have will have plenty of time to fully migrate Rules to Actions.
Regards,
Can you share some news about it ? We really want to migrate to actions but right now we can’t because of this.
Hello @dan.woda
Now that the actions have been released officially has this feature been prioritized ?
Currently we still can’t acces “Top-level event.user attributes added by an external IdP or custom database script” as per the documentation
This is a total blocker to migrate to actions.
Thanks
This is becoming more urgent as the scheduled deprecation of Rules will break our third party SSO login flow (only currently works with Rules). Can we get an update on whether this is scheduled for development before the deprecation?
Thanks for the feedback and interest. We are looking into unlocking create custom attributes for my users and store data on the user object by bringing SAML mapping to Actions by Q2 2023. We will be updating our changelog and Auth0 document when it becomes available.
It is also critical that my organization can access top-level user attributes from within Actions. We will be unable to migrate off of Rules until this enhancement is in production and anxiously await its deployment.
I’ll add to the votes for top level attributes here. Specifically we’re using an Enterprise Google Workspace connection and would like to drive our role based access from the groups specified in the GSuite.