I have an API with a permission, and I’ve assigned that permission to a role, and that role to a user.
I am trying to build a rule which puts user permissions in the ID token. I have tried user.permissions
and also context.authorization.permissions
. Neither are yielding any data.
I have also tried explicitly turning on RBAC for the API I created, and checking the setting that says “Add Permissions in the Access Token”. Nothing seems to expose those properties in either user.permissions
or context.authorization.permissions
.
Help?