Claims translated to WIF for JWT access tokens

IdentityServer / IdentityServer3.AccessTokenValidation

OWIN Middleware to validate access tokens from IdentityServer3

Apache License 2.0

91 stars 149 forks source link

Claims translated to WIF for JWT access tokens #123

Closed null-d3v closed 7 years ago

null-d3v commented 7 years ago

When using JWT access tokens, any claim with a WIF equivalent is translated into a WIF claim on the ClaimsPrincipal. However, when using reference access tokens, the claims are set on the ClaimsPrincipal with their OIDC names.

For example:

Reference access token: OIDC sub claim
JWT access token: WIF NameIdentifier claim

brockallen commented 7 years ago

You should call JstSecurityTokenHandler.InboundClaimTypeMap.Clear() to normalize them.