Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-15340

Ability to obtain original custom claim when regenerate the token

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: oauth2
    • Support Ticket IDs:

      Description

      It would good to have when issuing a new access token, it is possible to preserve original custom claims.

      The use case is to preserve custom claims in access tokens when they are refreshed. (e.g. ip address of client at authentication time).

      Suggested approach:

      • Holding the persisted claims in a refresh token
      • Allowing an access token modification script to copy over these claims to newly minted AT

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                wanning.tan WanNing Tan
              • Votes:
                1 Vote for this issue
                Watchers:
                12 Start watching this issue

                Dates

                • Created:
                  Updated: