userType as Claim

HI I was wondering If anyone knows how to add the usertype as a custom claim in my custom authorization server.
Tried different combinations but none of them work

nandos_mpg 2022-03-07 at 07.48.301288×330 10 KB

Looks like the only values that can be pulled in via a claims expression are values that are within the user’s profile

I was able to get the user type included in a claim via mappings, but its a little manual

1. Create custom attribute on your OIDC application to store the user type (I’m using variable userType)
   

   

   Screen Shot 2022-03-08 at 2.41.42 PM2030×1506 183 KB

2. Configure Profile Mappings between each of your user types and this OIDC app by using a static string to indicate what user type this is
   

   

   Screen Shot 2022-03-08 at 2.42.42 PM2202×1230 209 KB
   
   
   

   Screen Shot 2022-03-08 at 2.42.48 PM2052×216 12.1 KB
   
   
   

   Screen Shot 2022-03-08 at 2.42.35 PM2032×180 10.6 KB

3. Configure your claim to use the appuser profile as the source instead of the user profile
   

   

   Screen Shot 2022-03-08 at 2.37.04 PM1438×1152 60 KB

4. Request tokens for a user with the different user types
   

   

   Screen Shot 2022-03-08 at 2.38.21 PM2136×1574 289 KB
   
   
   

   Screen Shot 2022-03-08 at 2.37.24 PM2064×1568 281 KB

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.