Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

when using the oauth introspection authenticator, is any of the other data from the response available to the mutator? we would like to include the original client as a custom claim to let us track the origin of certain requests for analytics, but i only see a reference to the subject in the docs

Additional information should be available under `.Extra`:
```{{ print .Extra.andrews-origin-claim }}```

(Tested with `jwt`, and `bearer_token` authenticators only!)

yeah, i see extra under those authenticators, but oauth introspection doesn’t reference extra at all

well, i did find <https://github.com/ory/oathkeeper/blob/master/pipeline/authn/authenticator_oauth2_introspection.go#L268> in the code, so it _looks_ like yes, i’ll just have to play with it to see what i can actually get from it