The Problem With Binded Claims
In the OIDC protocol, claims can be requested using Scopes. Same happens with claims binded to Client applications.
However, in OpenIddict, it is not specified where the Scopes and Applications claims should be stored.
The Solution
In the need of this implementation, AdminUI stores these claims in the properties bag that both Scopes and Applications have. The claims are stored under these keys:
urn:com:rocksolidknowledge:adminui:scope:property:claimsin the Scopesurn:com:rocksolidknowledge:adminui:application:property:claimsin the Applications
To easily access these claims, we have created the OpenIddict.Utils NuGet package, so you can use it in your OpenIddict server.
You can find an example of how to implement this Nuget package in our OpenIddict sample.