https://supertokens.com/ logo
Channels
Powered by
#community
Title
# community
y

yyogeshwar

04/05/2022, 5:21 PM
can you help me with this first - How to add hasura custom claims , how it will work out for JWT's , since docs mentioned below are using accessTokenPayload https://supertokens.com/docs/passwordless/hasura-integration/with-jwt#3--add-custom-claims-to-the-jwt
const result = await Passwordless.consumeCode({ userInputCode: otp, deviceId, preAuthSessionId }) const jwt = await Session.createJWT({ sub: result.user.id })
this is how i am creating JWT
so it will be like this -
Copy code
const jwt = await Session.createJWT({
    'https://hasura.io/jwt/claims': {
      'x-hasura-user-id': 'userId',
      'x-hasura-default-role': 'user',
      // do some custom logic to decide allowed roles
      'x-hasura-allowed-roles': [
        'user',
        'admin',
        'public',
        'public_user',
        'fr_admin'
      ]
    }
  }, 3600, { sub: result.user.id })
r

rp

04/05/2022, 5:42 PM
It should be:
Copy code
Session.createJWT({
    'https://hasura.io/jwt/claims': {
        'x-hasura-user-id': 'userId',
        'x-hasura-default-role': 'user',
        // do some custom logic to decide allowed roles
        'x-hasura-allowed-roles': [
            'user',
            'admin',
            'public',
            'public_user',
            'fr_admin'
        ]
    },
    sub: result.user.id
}, 3600);
The sub should be a part of the payload in the JWT. If you do not want that, you can omit the 
sub
since you already have 
x-hasura-user-id
@User
y

yyogeshwar

04/05/2022, 5:44 PM
doing it like this -
Copy code
const jwt = await Session.createJWT({
    'https://hasura.io/jwt/claims': { // custom claims
      'x-hasura-supertoken-user-id': result.user.id,
      'x-hasura-user-id': 'userId',
      'x-hasura-default-role': 'user',
      // do some custom logic to decide allowed roles
      'x-hasura-allowed-roles': [
        'user',
        'admin',
        'public',
        'public_user',
        'fr_admin'
      ]
    }
  }, 3600)
adding 
'x-hasura-supertoken-user-id': result.user.id,
r

rp

04/05/2022, 5:45 PM
makes sense.
y

yyogeshwar

04/05/2022, 5:46 PM
this is the last piece in puzzle - able to successfully generate JWT token using Session.createJWT() with custom claims. Now i want to update https://supertokens.com/docs/passwordless/common-customizations/sessions/update-jwt-payload So how we can achieve that . I thing again call 
await Session.createJWT
r

rp

04/05/2022, 5:47 PM
Yes. You would have to call 
createJWT
again.
With the updated payload
3 Views
Powered by