OAuth 2.0 and OIDC mapping rule methods

You can use Java methods to customize the PreTokenGeneration and PostTokenGeneration mapping rules.

The sample mapping rules are oauth_20_pre_mapping.js and oauth_20_post_mapping.js.

You can access the sample mapping rules from the LMI. Navigate to System > Secure Settings > File Downloads. Continue to either of the following locations:

access_control > examples > mapping rules
federation > examples > mapping rules

The following limitations affect the attribute keys and values that are associated with the state_id by using the OAuthMappingExtUtils class:

Keys cannot be null or empty.
Values cannot be null but can be empty.
Associated key-value pairs are read and write-allowed and not-sensitive.
Some keys are reserved for system use and cannot be modified by this utility. For example, the keys and values for the API PIN protection.

For more information, see the Javadoc. In the LMI, navigate to System > Secure Settings > File Downloads. Continue to either access_control > doc or federation > doc.