Customizing access tokens
With PingOne, you can customize the content of access tokens by adding custom resource attributes and application permissions to the token. Use customized access tokens to convey additional information about token holders to applications.
About this task
You cannot customize tokens for the two default resources, |
Steps
-
Go to Applications → Resources and browse or search for the resource that you want to edit.
-
Click the resource entry to open the details panel for the resource.
-
To add custom attributes, click the Attributes tab, and then click the Pencil icon.
-
Click Add.
-
Enter the following:
-
Attributes: Enter the attribute value for the resource, such as
sub
. -
PingOne mappings: Select an attribute in the list, such as
User ID
.Learn more about configuring the access token TTL (time to live) in Editing a resource.
-
-
Continue adding attributes as needed.
-
-
To include application permissions in access tokens created for this resource, on the Permissions tab, click the Include user permissions in Access Token toggle.
Permissions for the authenticated user are included in the
p1.permissions
claim in the access token. Learn more about defining application permissions in Adding application permissions. -
Click Save.