Open candlerb opened 2 years ago
This would be a nice improvement that aligns our OIDC provider implementation more closely with the "should" noted above in the OIDC spec. We don't have plans to prioritize this soon but would happily review a pull request.
Is your feature request related to a problem? Please describe.
When you configure a scope like this:
but the given metadata item(s) are missing from the entity, currently empty claims are returned in the JWT:
Describe the solution you'd like I think it would be better if null claims were not returned. This would be in keeping with the spirit of section 5.3.2 of the spec:
However, here it is talking about the response to the UserInfo endpoint, rather than the original identity token.
Describe alternatives you've considered Retain the empty string. It's a bit ugly though.
For a JSON claim like
(which returns a list) then maybe the empty list is still appropriate.
Explain any additional use-cases N/A
Additional context N/A