Learn how to use the Trust Framework to add an attribute for a user's email address.
To prepare for creating a policy based on whether the user’s email address comes from a generic domain, create an attribute in the Trust Framework for the email address of the user authenticated to the application.
- In PingOne, go to and click the Attributes tab.
- Click the + icon and select Add new Attribute.
For the attribute Name, enter Game player
- Verify that there is no Parent selected. If a parent exists, click the Delete icon to remove it.
- In the Resolvers section, click + Add Resolver.
For the Resolver Type, select PingOne
User, and then select the attribute.
This resolver returns the user object for the current user, including properties such as the user's email address. For more information, see Resolvers.
- Click Value Processors and then click + Add Processor.
Make sure the Processor type is JSON
This is the default option.
Enter $.email in the input box for the JSON Path
This processor extracts the user's email address from the user object. For more information, see Processors.
- Click Save Changes.
You’ve added an attribute in the Trust Framework for the email address of the authenticated user.
Next, you’ll continue preparation for your fine-grained policy by adding an attribute for the invitee list of other game players.