It would good to have when issuing a new access token, it is possible to preserve original custom claims.
The use case is to preserve custom claims in access tokens when they are refreshed. (e.g. ip address of client at authentication time).
- Holding the persisted claims in a refresh token
- Allowing an access token modification script to copy over these claims to newly minted AT