We are trying to enable MFA for certain users. We leverage roles/permissions but we have noticed that when a user goes through the MFA flow, the permissions array is not included in the access token. How can we have MFA and have permissions included in the access token?

Permissions not included in access token for MFA flow

Saltuk March 9, 2021, 11:32am 8

As @vitaliy.obideyko mentioned, the issue with the permissions claims when implementing the resource owner flow with the MFA API has been resolved. The Universal Login flow was already working as expected.

2 Likes

Topic		Replies	Views
Access token is missing permissions when using MFA Get Help jwt , mfa	5	2985	March 24, 2021
Conditional multi-factor rule removes permissions from JWT Get Help rules , permissions , multi-factor	9	4005	March 9, 2021
Add permissions to access token in actions (September 2023, rules are deprecated) Get Help management-api , roles	4	2197	October 16, 2023
RBAC Step up Authentication Custom Scopes Get Help jwt , api , mfa , step-up , rbac	4	3807	August 18, 2020
How to get directly assigned permissions in access token? Get Help jwt , access-token , permissions	2	2659	July 21, 2022

Permissions not included in access token for MFA flow

Related topics