Okta-spring-boot-starter: How to read authorities from multiple claims?


I’m using okta-spring-boot-starter, and I’d like to combine the values from multiple claims into the authorities that end up in the Spring SecurityContext’s Authentication object.

I see where okta-spring-security-oauth2 supplies a OktaJwtAuthenticationConverter, and that calls out to TokenUtil.tokenClaimsToAuthorities(), but it currently only reads a single claim (defined by okta.oauth2.groups-claim).

Is there an accepted method for reading from multiple claims, or for wiring in an alternative OktaJwtAuthenticationConverter?


Hi @tim.russell,

I’m facing the exact same issue, were you able to fixed it ?! and if you did. could you share how ?

Thank you !

Best Regards,