Permalink: https://doc.oneportal.fi/x/N4AW
In addition to the standard OpenID Connect claims (listed here: http://openid.net/specs/openid-connect-core-1_0.html#StandardClaims) onePortal supports some custom claims. If they are requested in the original authentication request, the corresponding response values are included either in the ID token or in the /userinfo resource, depending on the request (http://openid.net/specs/openid-connect-core-1_0.html#ClaimsParameter).
The claim names are formatted as URIs to provide a common private namespace.
Custom claim name | Description | Type | Example | Since | Granted also with scope | |
---|---|---|---|---|---|---|
https://oneportal.trivore.com/claims/consents | User consent information. | JSON object | { "profiling":true, "locationing":true, "marketingOther":true, "marketingEmail":true, "marketingMobileMessage":true, "marketingPhone":true, "marketingPost":true, "marketingPushNotification":true, } | 2.8.4 | https://oneportal.trivore.com/scope/consent.readonly | |
https://oneportal.trivore.com/claims/groups | Array of group names user is a member of. | JSON array |
| https://oneportal.trivore.com/scope/groups.readonly | ||
https://oneportal.trivore.com/claims/namespace | Namespace code | String | "admin" | 2.8.1 | Always granted since 2.8.2. | |
https://oneportal.trivore.com/claims/strong_identification | User's strong identification status. How has the user been strongly identified. The response object has the following fields:
| JSON object | { "identified": true, "time":"2011-12-03T10:15:30Z", "method":"SUOMI_FI" } | |||
https://oneportal.trivore.com/claims/legal_locality | User's legal home city or locality name and code. The response object has the following fields:
| JSON object | { "names":{ "fi":"Turku", "sv":"Åbo" }, "code":"853" } | https://oneportal.trivore.com/scope/legalinfo.readonly | ||
https://oneportal.trivore.com/claims/legal_names | User's legal names. The response object may have some of the following fields:
| JSON object | { "calling_name": "Matti", "first_names": "Matti Aapeli", "last_name":"Meikäläinen" } | 2.8.2 | https://oneportal.trivore.com/scope/legalinfo.readonly | |
https://oneportal.trivore.com/claims/minor | User's 'minor' status. Is user a minor? The exact age limit is not specified so the client must make the determination based on their use case. | Boolean | null, true or false | profile | ||
https://oneportal.trivore.com/claims/personal_id_code | User's personal ID code. The information is sourced from either:
| String | "170675-123A" | https://oneportal.trivore.com/scope/legalinfo.readonly | ||
https://oneportal.trivore.com/claims/student | User's student status information. The response object has some of the following fields:
| JSON object | { "state":"fullTime", "student_from":"2018-06-01", "student_until":"2018-12-31", "updated":"2018-10-04T11:26:50.153Z", "last_query_success":true, "last_query_error": "" } | 2.8.0 | https://oneportal.trivore.com/scope/studentinfo.readonly |