<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html>
<head>
</head>
<body>
<div>I just wanted to mention that we thought this feature was useful. It may be worth providing this idea in the spec as an OPTIONAL feature...</div>
<div> </div>
<div>In cases where there are custom scopes, and custom claims, it may not be obvious to the client which scopes to request to get the respective claims. For this reason, we added another field to help define the scope to claims mapping. Below is an example from <a href="http://seed.gluu.org/oxauth-rp">http://seed.gluu.org/oxauth-rp</a>:</div>
<div>
<p><br />"scope_to_claims_mapping": [<br /> {<br /> "scope": "openid",<br /> "claims": ["uid"]<br /> },<br /> {<br /> "scope": "address",<br /> "claims": [<br /> "homePostalAddress",<br /> "postalAddress",<br /> "street",<br /> "postOfficeBox",<br /> "postalCode",<br /> "l",<br /> "c",<br /> "st",<br /> "neighborhood",<br /> "roomNumber"<br /> ]<br /> },<br /> {<br /> "scope": "clientinfo",<br /> "claims": [<br /> "displayName",<br /> "inum",<br /> "oxAuthAppType",<br /> "oxAuthIdTokenSignedResponseAlg",<br /> "oxAuthRedirectURI",<br />
"oxAuthScope",<br /> "oxAuthCustomAttribute1",<br /> "oxAuthCustomAttribute2",<br /> "oxAuthCustomAttribute3"<br /> ]<br /> },<br /> {<br /> "scope": "http://docs.kantarainitiative.org/uma/scopes/prot.json",<br /> "claims": []<br /> },<br /> {<br /> "scope": "profile",<br /> "claims": [<br /> "displayName",<br /> "givenName",<br /> "sn",<br /> "preferredLanguage",<br /> "timezone",<br /> "photo1"<br /> ]<br /> },<br /> {<br /> "scope": "phone",<br /> "claims": [<br /> "homePhone",<br /> "mobile",<br /> "telephoneNumber",<br /> "facsimileTelephoneNumber"<br /> ]<br /> },<br />
{<br /> "scope": "http://docs.kantarainitiative.org/uma/scopes/authz.json",<br /> "claims": []<br /> },<br /> {<br /> "scope": "email",<br /> "claims": ["mail"]<br /> }<br /> ]</p>
</div>
<div>
<p> </p>
</div>
</body>
</html>