This article describes how to get custom profile attributes using an Org Authorization Server.

• Okta Org Authorization Server
• OpenID Connect (OIDC) (Authentication) use case only
• Implicit, Authorization Code, or Resource Owner Password grant types

1. Create a custom user profile attribute by navigating to Directory > Profile Editor > User (default).

2. Click on Add Attribute, enter the details, and Save.
    
3. Go to Directory > People > select the user > under the Profile tab > click Edit > add a value.
   
   
4. Create a custom attribute on the OIDC App by navigating to Directory > Profile Editor > Apps > click on the OIDC App > Add Attribute.
     
    
5. Under Mappings > Okta User to OIDC App, map the attribute from Okta to the OIDC App.

6. 1. Link the attribute (Select from the drop-down).
      
       
      
      
   2. Select the desired option.
       
   3. Save Mappings.

6. The custom profile attribute can be found by calling the /userinfo endpoint, as documented in the Attribute/Claim Missing from ID Token article.

NOTE: Both scopes (openid, profile) are required in the request to see the custom attribute at the/userinfo endpoint.

Related References

• How to Add Custom Attributes of User Profile as Claims in Tokens