OAuth 2.0 mapping rule methods

OAuth 2.0 and OIDC mapping rule methods

We can use Java methods to customize the PreTokenGeneration and PostTokenGeneration mapping rules.
The sample mapping rules are oauth_20_pre_mapping.js and oauth_20_post_mapping.js.
We can access the sample mapping rules from the LMI. Navigate to System > Secure Settings > File Downloads. Continue to either of the following locations:

access_control > examples > mapping rules
federation > examples > mapping rules
The following limitations affect the attribute keys and values associated with the state_id using the OAuthMappingExtUtils class:

Keys cannot be null or empty.
Values cannot be null but can be empty.
Associated key-value pairs are read and write-allowed and not-sensitive.
Some keys are reserved for system use and cannot be modified by this utility. For example, the keys and values for the API PIN protection.

See the Javadoc. In the LMI, navigate to System > Secure Settings > File Downloads. Continue to either access_control > doc or federation > doc.
See also JavaScript whitelist.
Parent topic: Mapping rules for OAuth and OIDC