starred/pocket-id-pocket-id-2
1
0
Fork 0
mirror of https://github.com/pocket-id/pocket-id.git synced 2025-12-09 14:42:59 +03:00
Code Issues 116 Packages Projects Releases 10 Wiki Activity

🚀 Feature: Custom claims for clients (fetched from HTTP endpoint) #114

New Issue
Open
opened 2025-10-09 16:27:10 +03:00 by OVERLORD · 1 comment
OVERLORD commented 2025-10-09 16:27:10 +03:00
Owner
Copy Link

Originally created by @ItalyPaleAle on GitHub.

Feature description

It would be helpful to be able to add custom claims to the ID or access tokens per each client.

These claims could be hardcoded (configured in the UI) or ideally could be fetched from a HTTP(S) endpoint. During the authentication flow, Pocket ID would invoke the HTTP(S) endpoint with information about the user that is signing in, and the endpoint would respond with claims to add to the ID and/or access tokens.

Pitch

Applications often need to add claims to tokens that are specific to the user.

Examples include adding information from internal databases (think, organization name, or specific permissions, etc).

Personally, I would like to migrate one of my apps from Auth0 to Pocket ID, but I need to be able to add claims to the tokens that are specific to each user.

Most other IdP's have similar features, where custom claims can be added per client (either by invoking an endpoint, or sometimes by executing code directly in the IdP)

Originally created by @ItalyPaleAle on GitHub. ### Feature description It would be helpful to be able to add custom claims to the ID or access tokens per each client. These claims could be hardcoded (configured in the UI) or ideally could be fetched from a HTTP(S) endpoint. During the authentication flow, Pocket ID would invoke the HTTP(S) endpoint with information about the user that is signing in, and the endpoint would respond with claims to add to the ID and/or access tokens. ### Pitch Applications often need to add claims to tokens that are specific to the user. Examples include adding information from internal databases (think, organization name, or specific permissions, etc). Personally, I would like to migrate one of my apps from Auth0 to Pocket ID, but I need to be able to add claims to the tokens that are specific to each user. Most other IdP's have similar features, where custom claims can be added per client (either by invoking an endpoint, or sometimes by executing code directly in the IdP)
OVERLORD added the needs more upvotes label 2025-10-09 16:27:10 +03:00
OVERLORD commented 2025-10-09 16:27:12 +03:00
Author
Owner
Copy Link

@savely-krasovsky commented on GitHub:

If I understood correctly #890, client_credentials flow will able to use those claims in issued access_tokens.

@savely-krasovsky commented on GitHub: If I understood correctly #890, `client_credentials` flow will able to use those claims in issued `access_tokens`.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
breaking
bug
documentation
feature
needs more upvotes
open to pull requests
pull-request
Mirrored from GitHub Pull Request
No Label needs more upvotes
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
OVERLORD
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/pocket-id-pocket-id-2#114
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?