Client Credentials Access token : Include custom claim by default

Hi All,

Grant type: Client Credentials

I’ve two different clients accessing my dot net core API and based on their user groups, API functions are restricted.

Is possible to add a custom claim ( groups) to the access token for Client Credentials Grant type ? It works with the implicit flow.

Can anybody point me in the right direction?

Thank you in advance

Screenshot for your reference

Create a custom Auth Server


Create a claim call Groups

Hi @AAAA

Unfortunately, it’s not possible, as the claim is targeting the group membership of the user that got authorized and, when using client credentials, there is no user involved.

Hi @dragos, Thanks for the prompt reply.