Skip to content
oidc-provider

features.claimsParameter

OIDC Core 1.0 - Requesting Claims using the “claims” Request Parameter

Specifies whether the claims request parameter shall be enabled for authorization requests. When enabled, the authorization server shall accept and process the claims parameter to enable fine-grained control over which claims are returned in ID Tokens and from the UserInfo Endpoint.

default value:

{
  assertClaimsParameter: [AsyncFunction: assertClaimsParameter], // see expanded details below
  enabled: false
}
(Click to expand) features.claimsParameter options details

assertClaimsParameter

Section titled “assertClaimsParameter”

Specifies a helper function that shall be invoked to perform additional validation of the claims parameter. This function enables enforcement of deployment-specific policies, security constraints, or extended claim validation logic according to authorization server requirements.

The function may throw errors to reject non-compliant claims requests or return successfully to indicate acceptance of the claims parameter content.

default value:

async function assertClaimsParameter(ctx, claims, client) {
  // @param ctx - koa request context
  // @param claims - parsed claims parameter
  // @param client - the Client instance
}