![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 8%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETF%3C/text%3E%3C/svg%3E)
25,080 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 20%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hi @Tdev Feeds ,
Thanks for reaching out and apologies for delay in response.
I understand you are trying to get JTI claim in JWT token.
Azure AD provides "nonce" claim in the ID token to protect against relay attack. Your application can specify a nonce in an authorization request by using the "nonce" query parameter. The value you provide in the request is emitted unmodified in the "nonce" claim of an ID token only. If it does not match, your application should reject the token.
JWT spec sets the claim name as “jti”. While OAuth Spec mentions it as “asserting id”. When Microsoft designs and implements it in AzureAD, we name it as “nonce”.
We don’t have the official method to add the “jti” in the ID token natively.
Hope this will help.
Thanks,
Shweta
-------------------------------------
Please remember to "Accept Answer" if answer helped you.