Versions Compared

Version Old Version 1 New Version 2
Changes made by

Marc Probst

Silvan GrĂ¼ter

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Introduction

Sometimes a customer an application wants an access token from our authentication service the CoreOne Authentication Service but the included claims are not enough to satisfy the need for information or authorization.

But it makes no sense to get de ID Token because it holds too much information or it contains information that should not be shared between clients. (Difference between ID and Access tokenMore about Tokens and their difference)

To extend the claims provided in the access token we need to create an API Resource for this specific use case and with the help of Scopes the client can easily request the needed claims in the access token.

...