Client Credentials Access token : Include custom claim by default

Hi All,

Grant type: Client Credentials

I’ve two different clients accessing my dot net core API and based on their user groups, API functions are restricted.

Is possible to add a custom claim ( groups) to the access token for Client Credentials Grant type ? It works with the implicit flow.

Can anybody point me in the right direction?

Thank you in advance

Screenshot for your reference

Create a custom Auth Server

Create a claim call Groups


Unfortunately, it’s not possible, as the claim is targeting the group membership of the user that got authorized and, when using client credentials, there is no user involved.

Hi @dragos, Thanks for the prompt reply.