Hi @Fabio Andrade
Below is the manifest from the resource application. As a note for the OptionalClaims source, I have tried setting it to null as well.
{
"id": "5739812b-adfd-4cb8-8fd0-38c6194468c8",
"acceptMappedClaims": true,
"accessTokenAcceptedVersion": null,
"addIns": [],
"allowPublicClient": true,
"appId": "dd5512bb-2789-4bcb-8b3e-de974abf578a",
"appRoles": [
{
"allowedMemberTypes": [
"User"
],
"description": "Gives access to API",
"displayName": "Access",
"id": "72d189e1-a313-4f63-a675-033275050740",
"isEnabled": true,
"lang": null,
"origin": "Application",
"value": "Access"
}
],
"oauth2AllowUrlPathMatching": false,
"createdDateTime": "2023-06-16T09:39:24Z",
"description": null,
"certification": null,
"disabledByMicrosoftStatus": null,
"groupMembershipClaims": null,
"identifierUris": [
"https://ascodingpoland.onmicrosoft.com/dd5512bb-2789-4bcb-8b3e-de974abf578a"
],
"informationalUrls": {
"termsOfService": null,
"support": null,
"privacy": null,
"marketing": null
},
"keyCredentials": [],
"knownClientApplications": [],
"logoUrl": null,
"logoutUrl": null,
"name": "backend",
"notes": null,
"oauth2AllowIdTokenImplicitFlow": false,
"oauth2AllowImplicitFlow": false,
"oauth2Permissions": [
{
"adminConsentDescription": "Test",
"adminConsentDisplayName": "Test",
"id": "84c00d2c-c272-491c-bfdc-5a4bac02bf0e",
"isEnabled": true,
"lang": null,
"origin": "Application",
"type": "Admin",
"userConsentDescription": null,
"userConsentDisplayName": null,
"value": "Test"
}
],
"oauth2RequirePostResponse": false,
"optionalClaims": {
"idToken": [],
"accessToken": [
{
"name": "extension_308efd53c19f4f6586a412ec43c15255_merchantId",
"source": "User",
"essential": false,
"additionalProperties": []
}
],
"saml2Token": []
},
"orgRestrictions": [],
"parentalControlSettings": {
"countriesBlockedForMinors": [],
"legalAgeGroupRule": "Allow"
},
"passwordCredentials": [],
"preAuthorizedApplications": [],
"publisherDomain": "ascodingpoland.onmicrosoft.com",
"replyUrlsWithType": [],
"requiredResourceAccess": [
{
"resourceAppId": "00000003-0000-0000-c000-000000000000",
"resourceAccess": [
{
"id": "37f7f235-527c-4136-accd-4a02d197296e",
"type": "Scope"
},
{
"id": "7427e0e9-2fba-42fe-b0c0-848c9e6a8182",
"type": "Scope"
}
]
}
],
"samlMetadataUrl": null,
"signInUrl": null,
"signInAudience": "AzureADMyOrg",
"tags": [],
"tokenEncryptionKeyId": null,
"extension_308efd53c19f4f6586a412ec43c15255_merchantId": "abc123"
}
I would appreciate a walkthrough on how to configure applications and associated service principals so that I will be able to see the custom claim.
Thakns