Namespace when setting custom claims

tjhoo · August 30, 2024, 7:18am

exports.onExecutePostLogin = async (event, api) => {
  const namespace = 'https://my-app.example.com';
  if (event.authorization) {
    api.idToken.setCustomClaim(`${namespace}/roles`, event.authorization.roles);
    api.accessToken.setCustomClaim(`${namespace}/roles`, event.authorization.roles);
  }
}

Am I correct to assume that the namespace has no relation to the application identifier? What is the appropriate namespace in the case where there are multiple applications with specific roles and permissions?

tjhoo · August 30, 2024, 7:42am

I found this namespaced guidelines.

I guess we have to decide one “generic” namespace in the case where there are multiple web apps hosted in different domains.

Topic		Replies	Views
Custom Claims working with idToken in Rules, but not in Actions Help login-experience , new-universal-login-experience	3	17	September 13, 2024
Non-namespaced custom claims in app_metadata or user_metadata Help token-info-tokeninfo , deprecations	5	1453	February 20, 2023
Rules to Actions. Add custom field to id Token JWT body Help jwt , auth0 , id_token , rules , actions	6	5808	February 18, 2022
How can I get my custom scopes in the access token? Help login-experience , free-trial	2	24	October 7, 2024
How is the Extended Attributes populated? Help user-management , account-linking	0	13	September 10, 2024

Namespace when setting custom claims

Related Topics