stackoom
  简体   繁体   中英

Include user_metadata and app_metadata in JWT using Auth0

 原文  2017-02-21 17:49:40       angular/ authentication/ auth0

Question

I am using Angular 2 and Auth0 for authentication on my web app. I am able to get the user profile using the following code: 

auth0 = new auth0.WebAuth({
    domain: 'MY-DOMAIN',
    clientID: 'MY-CLIENT-ID',
    callbackURL: 'MY-CALLBACK',
    responseType: 'token id_token'
});

Login: 

public login(username: string, password: string): void {
    this.auth0.client.login({
      realm: 'Username-Password-Authentication',
      username,
      password
    }, (err: any, authResult: any) => {
      if (err) {
        alert('Error: ' + err.description);
        return;
      }
      if (authResult && authResult.idToken && authResult.accessToken) {
        this.setUser(authResult); <--- Here is where I get the profile
        this.router.navigate(['/home']);
      }
    });
}

Saving token on localStorage and getting the profile: 

private setUser(authResult: any): void {
    localStorage.setItem('access_token', authResult.accessToken);
    localStorage.setItem('id_token', authResult.idToken);

    this.auth0.client.userInfo(authResult.accessToken, (error: any, profile: any) => {
      if (!error) {
        localStorage.setItem('profile', JSON.stringify(profile));
        this.userProfile = profile;
      }
    });
}

So this works, but the profile object I get doesn't include the user_metadata or the app_metadata configured on the Auth0 website. How can I include it?

2 answers

solution1
 2  2017-03-08 05:03:51

You could use an Auth0 Hook. Login to Auth0 and on the left side navigation pane choose "Hooks". Under "Client Credentials Exchange" create a new hook. In here you can add to the scopes that by default your app passes in to the Lock API. Adding the following line: 

access_token.scope.push('user_profile');

I believe should include both user_metadata AND app_metadata.

You should be able to also specify this from the client itself without using a hook. If you check out this link it should show you some extra options you can specify with regards to the scope parameter. This sample looks particularly useful: 

var options = {  auth: {
params: {scope: 'openid email user_metadata app_metadata picture'},  }};

solution2
 2  2017-10-03 08:22:51

Deevz answer is correct, accept it so it is marked as such. I would like to expand on it, however. You have to add a new rule to your auth0 client. This is done in the 'Rules' section. 

function (user, context, callback) {
    var namespace = 'unique-namespace';
    context.idToken[namespace + 'app_metadata'] = user.app_metadata;
    context.idToken[namespace + 'user_metadata'] = user.user_metadata;
    context.accessToken[namespace + 'app_metadata'] = user.app_metadata;
    context.accessToken[namespace + 'user_metadata'] = user.user_metadata;
    callback(null, user, context);
}

I hope it helps.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Angular 2 and JWT authentication (Auth0) NativeScript Angular User Authentication Using Auth0 Include email in JWT using Auth0Lock JWT Token not sent to allowedDomain or whitelistedDomains in auth0/angular-jwt when using Regexp config making a user profile system for angular 2 using auth0? Auth0 JWT Token validation in PHP Integration Salesforce and Angular App using Auth0 SSO Auth0 JWT plugin and ionic2 - No Authorization header send Single Sign On - Cross Domain Authentication (@auth0/angular2-jwt) Cannot find module "@auth0/angular-jwt/"
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM