Enabling custom attributes (claims) for Salesforce connected app OAuth
I am trying to configure OAuth via a connected app in my Salesforce instance. I am able to login, but I do not get an custom claims (Custom Attributes). I think what I need is to check the "Include Custom Attributes" checkbox. But when I edit the app, that checkbox is no where to be checked. I can only see it in the view.
I am able to check a similar box under "Configure ID Token", but that checkbox seems to have no effect on the OAuth setting.
In the end, I just need to see my claims show up in my remote app. But I just get name and email.
When you make initial call to /services/oauth2/authorize - what's your response_type? For example is it token+id_token?
You receive authorisation code valid for few minutes and then you swap it for the final response with access_token (a.k.a. SF session id), instance_url (endpoint to use from now on) etc.
Custom attributes will be included in the base64-encoded id_token - if you requested it.
And have you defined some custom attributes? They should be on related list at the bottom of the connected app's page but check that they exist in both places. There's the main app page (where you define OAuth2 scopes, can read the key & secret) - and there's the button to Manage Policies or sth like that (where you define which profiles/permission sets can use it) - custom attributes must be present on both pages' related lists.
- Limiting the scopes of an OAuth 2.0 flow
- Is Endpoint Security Authentication in WSO2 APIM Done per API or per request?
- Why do i need to specify redirect_uri if i am authenticating from server side?
- Error 400: invalid_scope with Postman and Google OAuth2
- Issues Adding SMTP.Send Permission to Azure Application for Office 365 SMTP
- PHP - How to get OAuth 2.0 Token
- UPS Outh Rating API return Invalid Authentication Information
- How to store sensitive data in React Native or expo code ? ( with Keychain and Keystore )
- How to get Optum sandbox to authenticate with OAuth 2.0 using Java and okhttp
- Spring Boot redirection back to login page
- New Google place api using google OAuth, ask failed to refresh token
- Authentication Problems using Google's ARCore API
- Getting OAuth code challenge on loopback server
- How do I solve audience (aud) invalid claim error for downstream api service?
- oauth 2 parameters can only have a single value: scope
- #oauth2 security expressions on method level
- Calling spring authorization server OAuth2 REST endpoints
- Google AdWords API authorization raising AdsCommon::Errors::AuthError
- Google OAuth 2 Error 400: redirect_uri_mismatch but redirect uri is compliant and already registered in Google Cloud Console
- Passport - Node.js not returning Refresh Token
- AWS Cognito: Missing Scopes in Access Token with Custom UI and Device Remember Functionality for MFA
- Cross-client Google OAuth: Get auth code on iOS and access token on server
- How to generate GOOGLE_CLIENT_ID and GOOGLE_CLIENT_SECRET without a domain?
- Spring Gateway and OAuth
- OAuth Client Credential Flow - Refresh Tokens
- Django OAuth2 Authentication Failing in Unit Tests - 401 'invalid_client' Error
- Add OAuth authentication for HTTP request triggers
- OAuth2 implementation and user management Django
- How to enable a submit button if form fields are auto-filled by the browser using saved credentials on page load?
- AADSTS70000 Error When Requesting for Access Token