Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

We have this mapper for OIDC logins:

```local claims = {
  email_verified: false,
} + std.extVar('claims');

{
  identity: {
    traits: {
      // Allowing unverified email addresses enables account
      // enumeration attacks,  if the value is used for
      // verification or as a password login identifier.
      //
      // Therefore we only return the email if it (a) exists and (b) is marked verified
      // by Discord.
      [if 'email' in claims &amp;&amp; claims.email_verified then 'email' else null]: claims.email,
      username: claims.nickname,
    },
    metadata_public: {
        discord_id: claims.sub
    },
  },
}```
this doesn’t work for linking an OIDC later

just want to say I appreciate you sharing this because it solves a problem I was curious about! we also are using discord, but I don't have some of the extra data mapped.

<@U03TGJDMWDT> did you also need to update your identity schema to accommodate this? if so, would you mind sharing?