V4 NextJS SDK Does Not Return Custom Fields on User idToken

relero90 · February 20, 2025, 9:20pm

I am running into an issue described here: https://community.auth0.com/t/post-login-trigger-only-firing-for-one-application-in-my-tenant-why-not-the-others/182462

Basically, I have a custom action that is triggered post login for my tenant that serves to attach custom metadata to a user’s id token via api.idToken.setCustomClaim(). In apps using the old v3 SDK, this metadata is returned with the user object from useUser without issue. In the beta v4 SDK, this metadata is nowhere to be found.

Is there some action I need to take to ensure my metadata is attached to my idTokens in the V4 SDK or is this a bug?

remus.ivan · February 21, 2025, 8:31pm

Hi @relero90,

Welcome back to the Auth0 Community and thank you for your post.

In the V3 version of the NextJS Auth0 SDK any claims added to the ID token were automatically propagated to the user object. In the V4 version the list of default claims that persist in the user object does not include the metadata.

In order to ensure this metadata is passed to the ID token you can use the beforeSessionSaved hook. Please check out the V4 Migration Guide included in the NextJS SDK for further documentation.

I hope this helped.
Thanks again,
Remus

relero90 · March 25, 2025, 9:46pm

Adding the following value for beforeSessionSaved in my options config option for the Auth0 client solved this problem in the v4 SDK for me:

import { Auth0Client, SessionData } from "@auth0/nextjs-auth0/server";

const createAuth0Client = async (brand: string): Promise<Auth0Client> => {
    const optionsConfig: Auth0ClientOptions = {
        authorizationParameters: {
            audience: 'unity',
        },
        domain:
            process.env[`${brand.toUpperCase()}_AUTH0_DOMAIN`] ||
            process.env.AUTH0_DOMAIN as string,
        clientId:
            process.env[`${brand.toUpperCase()}_AUTH0_CLIENT_ID`] ||
            process.env.AUTH0_CLIENT_ID as string,
        clientSecret:
            process.env[`${brand.toUpperCase()}_AUTH0_CLIENT_SECRET`] ||
            process.env.AUTH0_CLIENT_SECRET as string,
        appBaseUrl:
            process.env[`${brand.toUpperCase()}_APP_BASE_URL`] ||
            process.env.APP_BASE_URL as string,
        secret:
            process.env[`${brand.toUpperCase()}_AUTH0_SECRET`] ||
            process.env.AUTH0_SECRET as string,
        beforeSessionSaved: async (session: SessionData, idToken: string | null): Promise<SessionData> => ({ ...session }),
    };
    return new Auth0Client(optionsConfig)
}

export default createAuth0Client;

remus.ivan · March 25, 2025, 9:50pm

Thanks @relero90 for sharing this with the Community!

Topic		Replies	Views
Post-Login Trigger Only Firing for One Application in my Tenant - Why Not The Others? Get Help apis , application	3	33	March 6, 2025
Action to copy app_metadata to tokens not working Get Help user-profile , user-management	14	876	December 4, 2023
NextJS useUser Not Getting App Metadata Get Help auth0 , nextjs	7	4395	July 27, 2021
Getting user_metadata in @auth0/nextjs-auth0 Get Help user-profile , user-management	1	1796	October 2, 2023
Custom Claims added to accessToken not being returned from /userinfo Get Help extensibility , actions-extensibility	5	3216	March 25, 2023

V4 NextJS SDK Does Not Return Custom Fields on User idToken

Related topics