Hi @john.gateley,
I have a similar use case where I want to extend the access token custom claims with data from our API. The API is secured by an Auth0 signed JWT.
Could you possibly clarify what you mean by
Use a M2M access token and pass the user ID as parameter
or more guidance on how to implement this?
I’m trying to add mapped data from our database depending on app data from the Authorization extension. The basic flow should be like this:
- Login request
- Post-login triggers
- Get app-data from Authorization extension
- Make API call to fetch mapped data depending on auth-groups from previous step
- Append auth-groups and fetched data to token as custom claim
- Issue token
- Finish
Maybe there is a better way that I’m unaware of.