Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Selective JWT Access Token Claims Handling #20880

Closed
shashimalcse opened this issue Aug 12, 2024 · 0 comments
Closed

Selective JWT Access Token Claims Handling #20880

shashimalcse opened this issue Aug 12, 2024 · 0 comments
Assignees
@shashimalcse @mpmadhavig
Labels
Type/Improvement Type/NewFeature
Milestone
7.1.0-m5

Comments

@shashimalcse
Copy link
Contributor

Is your suggestion related to an experience ? Please describe.
In Identity Server/Asgardeo, The attributes configured in the user attributes section are automatically added to the JWT access token when those claims are requested. This automatic inclusion can lead to unnecessary claims within the JWT access token. This may result in the inclusion of personally identifiable information (PII) without any practical necessity, leading to the overexposure of sensitive user information. Also, these unwanted claims in JWT access token can increase the token's size, thereby impacting performance.

There is no existing mechanism to selectively include or exclude these user attributes to JWT access tokens.
To address this issue, we need to introduce a way to handle JWT access token claims selectively. This would allow admins to control which claims should be included in the JWT access token. Such a feature ensures that sensitive information is handled securely and only necessary data is transmitted through JWT access tokens.

Describe the improvement
Introduce selective JWT access token claims handling. This offer admins to control which claims should be included in the JWT access tokens.

Additional context
@shashimalcse shashimalcse self-assigned this Aug 12, 2024
This was referenced Aug 12, 2024
Closed
Merged
Closed
Merged
Merged
Closed
Closed
@nilasini nilasini moved this to In Progress in Identity Server 7.1.0 Sep 27, 2024
@nilasini nilasini modified the milestones: 7.1.0-m4, 7.1.0-m3 Oct 1, 2024
This was referenced Oct 11, 2024
Merged
Merged
Merged
@NipuniBhagya NipuniBhagya modified the milestones: 7.1.0-m3, 7.1.0-m4 Oct 18, 2024
@mpmadhavig mpmadhavig mentioned this issue Oct 22, 2024
Merged
@nilasini nilasini modified the milestones: 7.1.0-m4, 7.1.0-m5 Oct 25, 2024
@mpmadhavig mpmadhavig mentioned this issue Oct 28, 2024
Merged
This was referenced Nov 11, 2024
Merged
Closed
Merged
Merged
Merged
Closed
Merged
@nilasini nilasini modified the milestones: 7.1.0-m5, 7.1.0-m6 Nov 21, 2024
@mpmadhavig mpmadhavig self-assigned this Nov 22, 2024
@mpmadhavig mpmadhavig moved this from In Progress to Done in Identity Server 7.1.0 Nov 22, 2024
@mpmadhavig mpmadhavig closed this as completed by moving to Done in Identity Server 7.1.0 Nov 22, 2024
@nilasini nilasini modified the milestones: 7.1.0-m6, 7.1.0-m5 Nov 22, 2024
@mpmadhavig mpmadhavig mentioned this issue Nov 22, 2024
Closed
This was referenced Dec 4, 2024
Open
Closed
@shashimalcse shashimalcse mentioned this issue Jan 16, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@shashimalcse shashimalcse

@mpmadhavig mpmadhavig

Labels
Type/Improvement Type/NewFeature
Projects
Identity Server 7.1.0
Status: Done
Milestone
7.1.0-m5
Development

No branches or pull requests
4 participants
@nilasini @NipuniBhagya @shashimalcse @mpmadhavig