Query Parameter in Authorize url to be passed to custom claims provider

Mohamed Seamari 0 Reputation points
2024-12-09T08:51:29.2666667+00:00

Using the following sample: https://zcusa.951200.xyz/en-us/entra/identity-platform/custom-extension-tokenissuancestart-configuration?tabs=azure-portal%2Cexternal-tenant I succeeded in triggering an Azure Function on the TokenIssuanceStart event to add custom claims to both the identity and access token.

as the tenant I'm working on is an "External" tenant I have to use the following url to login and get a token: https://{domainName}.ciamlogin.com/{tenantId}/oauth2/v2.0/authorize?client_id={App_to_enrich_ID}&response_type=id_token&redirect_uri=https://jwt.ms&scope=openid&state=12345&nonce=12345

now on this same url I want to add my own query parameter to it and have it pass to the Azure Function.

for example if I go to the following url: https://{domainName}.ciamlogin.com/{tenantId}/oauth2/v2.0/authorize?client_id={App_to_enrich_ID}&response_type=id_token&redirect_uri=https://jwt.ms&scope=openid&state=12345&nonce=12345?myparam=hello

I want the query parameter myparam to go either to be passed to the azure function as a query parameter for example: https://myazurefunction.azurewebsites.net/api/CustomClaims?myparam=hello

or that the query parameter is added as data in the "onTokenIssuanceStartCalloutData" when the azure function is triggered

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,981 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Akhilesh Vallamkonda 10,955 Reputation points Microsoft Vendor
    2024-12-10T09:38:46.6366667+00:00

    Hi @Mohamed Seamari

    Thank you for reaching Microsoft Q&A Forum!

    If I understand correctly you would like to add the custom parameter to your URL, you have registered the custom claim in Entra ID which involves setting up the token issuance event and specifying the endpoint of your Azure Function.
    The application developer needs to implement the Azure Function to handle the incoming requests and process the custom query parameters.
    I suggest you reach the application developer to achieve your ask.

    Hope this helps. Do let us know if you any further queries by responding in the comments section.
    Thanks,

    Akhilesh


    If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.