introspection-response-attributes

Use this entry to control which attributes from the response are added as attributes to the credential.

introspection-response-attribute = [+|-]<json-data> {[+|-]<json-data> ...}

Description

Multiple rules can be specified as a space separated list. When an introspection response is received each piece of JSON data will be evaluated against each rule in sequence until a match is found. The corresponding code (+|-) is then used to determine whether the JSON data is added to the credential or not. If the JSON data name does not match a configured rule it is by default added to the credential.

Usage: Optional

Example:

introspection-response-attributes = +scope +client_id +iat +exp

Parent topic: [oauth-introspection] stanza