`sub` field #3

ym-corey · 2024-06-13T17:29:49Z

In JWT spec and this doc, the sub field is a string. In the provided example, the sub field is a nested json object. Is the idea that this will be a stringified json?

Should this instead be additional claims at the top layer of the JWT obj?

jaredmoscow · 2025-02-04T21:55:34Z

@ym-corey it seems like there are two options for this.

Stringify the JSON object: this structured data could store as a JSON string within sub
example: "{"identifierValue":"28f6dc889e...fe167","identifierType":"email","identifierFormat":"sha256"}"
Use Additional Claims at the Top Level: Instead of embedding structured data within sub, move the relevant fields to separate claims in the JWT payload.
example:
"sub": "28f6dc889e...fe167",
"identifierType": "email",
"identifierFormat": "sha256"

in this sub probably assumes the role of the current identifier value field? if that is the case, we'd be introducing a breaking change due to claim and payload restructuring.

is there a preferred method?

lpolya-tl · 2025-03-04T22:23:49Z

@ym-corey @jaredmoscow I would suggest the best way forward is option 1 since it already exists in the spec and I don't believe it goes against the JWT guidelines

jaredmoscow mentioned this issue Mar 4, 2025

Data deletion syntax questions #4

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

`sub` field #3

`sub` field #3

ym-corey commented Jun 13, 2024

jaredmoscow commented Feb 4, 2025

lpolya-tl commented Mar 4, 2025

sub field #3

sub field #3

Comments

ym-corey commented Jun 13, 2024

jaredmoscow commented Feb 4, 2025

lpolya-tl commented Mar 4, 2025

`sub` field #3

`sub` field #3