What request context attributes are available in Authentication and Authorization policies?

Chafaa · August 11, 2025, 2:00pm

Hey everyone,

I’m working on implementing custom rules in my access policies and need to understand what request context attributes are available for use in policy expressions.

What I’m trying to achieve: I want to create conditional access rules based on the incoming OAuth/OIDC request context in my authentication policy rules. Specifically, I’m looking to make authorization decisions based on various request parameters and context information.

My questions:

What is the complete list of request.* attributes available in authentication access policy rules?
Are OAuth parameters (state, redirect_uri, login_hint, scope, etc.) accessible in policy expressions?

system · September 10, 2025, 2:00pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Post		Replies	Views
Token claim expression and authentication attributes OAuth/OIDC	4	2166	February 13, 2024
OKTA rest api calls Questions	2	3636	December 9, 2019
How to create Okta custom access policies for specific application OAuth/OIDC	0	1399	November 4, 2023
Access App Specific Sign On Policy via API OAuth/OIDC	2	4564	January 17, 2024
Get all routing rules for a given Policy ID - Okta SDK API java , sdk	2	213	July 8, 2024

What request context attributes are available in Authentication and Authorization policies?

Related topics