feat: ability to map custom claims

README.md

@@ -56,6 +56,8 @@ Ory OAuth2 requires more setup to get CSRF cookies on the `/consent` endpoint.
   name without the `__Host-` prefix.
 - `TRUSTED_CLIENT_IDS` (optional): A list of trusted client ids. They can be set
   to skip the consent screen.
+- `ID_TOKEN_TRAITS` (optional): A comma separated list of identity traits to be
+  mapped to id_token.
 
 Getting TLS working:
 

src/routes/consent.ts

@@ -57,6 +57,16 @@ const extractSession = (
       session.id_token.name = identity.traits.name
     }
 
+    const traitsToMap = process.env.ID_TOKEN_TRAITS
+    if (traitsToMap) {
+      const traits = traitsToMap.split(",")
+      for (const trait of traits) {
+        if (identity.traits[trait]) {
+          session.id_token[trait] = identity.traits[trait]
+        }
+      }
+    }
+
     if (identity.updated_at) {
       session.id_token.updated_at = Date.parse(identity.updated_at)
     }