Support for custom claims in JWT

Question

Support for custom claims in JWT

RyszardRzepa opened this issue 4 years ago · comments

Hey,

I can´t find this feature in the docs.
Does vipps auth support adding custom claims into JWT token?

Example of how firebase auth support this feature: https://firebase.google.com/docs/auth/admin/custom-claims#set_and_validate_custom_user_claims_via_the_admin_sdk

example custom claim:

{
  "sub": "1234567890",
  "name": "John Doe",
  "admin": true,
  "iat": 1516239022,
  "https://hasura.io/jwt/claims": {
    "x-hasura-allowed-roles": ["editor","user", "mod"],
    "x-hasura-default-role": "user",
    "x-hasura-user-id": "1234567890",
    "x-hasura-org-id": "123",
    "x-hasura-custom": "custom-value"
  }
}

Thomas Townsend · Answer 1 · Sat Jun 06 2020 18:39:08 GMT+0800 (China Standard Time)

Hi @RyszardRzepa
This is not something we have support for in our authentication solution, apologies for this.

Could you expand on your use case for this? It would be nice to get a better understanding so we can consider if this is a feature worth investing time in.

ryszard · Answer 2 · Wed Jun 10 2020 20:10:04 GMT+0800 (China Standard Time)

I am using hasura.io engine for managing authentication/authorization for Postgres db. Hasura has requirements to enhance user roles in the JWT.
https://hasura.io/docs/1.0/graphql/manual/auth/authentication/index.html

The use case:
Managing user roles from the auth service make it straight forward to build authorization service in db.

Christian Løverås · Answer 3 · Mon Sep 28 2020 15:06:20 GMT+0800 (China Standard Time)

Hi @RyszardRzepa

Apologies for the hideously late response.

The functionality you describe is not something Vipps will implement, sorry.

Christian, Vipps