<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
How to Return the email_verified Claim
Apr 2, 2025
API Access Management
Okta Classic Engine
Okta Identity Engine
Overview

This article discusses how to return the email_verified claim depending on the authorization flow.

Applies To
  • Implicit Flow
  • Authorization code flow 
  • OIDC
  • Tokens
Solution

The email_verified claim is dependent on the email scope and is returned in the following scenarios:

  • With an implicit flow and response_type being id_token, only email_verified will be returned in the ID token.
    • response_type of id_token token will not return email_verified.
  • Sending a request to /userinfo with the access token included in the HTTP authorization header:
request to /userinfo

NOTE: For Okta Integration Network (OIN) integrations, independent software vendors should not rely on the email_verified scope-dependent claim returned by an OIDC integration to evaluate whether a user has verified ownership of the email address associated with their profile. 

Recommended content

Still looking for help?
Loading
How to Return the email_verified Claim