Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

The issue is that each machine/service instance needs to have its own key, but I'd like to be able to attach additional metadata (roles, etc.) in the same way I'd do with the user schema. The only thing I saw that would allow this was "metadata", but it doesn't seem to be returned by the `/userinfo` endpoint, which is itself the only endpoint I've found that will return any info from an access *token* (`ory_at_XYZ`) to be useful with the oathkeeper auth/mutation.