How To Add A Custom Header Value As A JWT Claim In WSO2 API Manager 4.3.0?

May 14, 2025 by ADMIN 75 views

How to Add a Custom Header Value as a JWT Claim in WSO2 API Manager 4.3.0

===========================================================

Introduction

WSO2 API Manager 4.3.0 provides a robust feature to generate JSON Web Tokens (JWT) for API authentication and authorization. However, in some scenarios, you might need to add custom claims to the JWT generated by the gateway. This article will guide you through the process of adding a custom header value as a JWT claim in WSO2 API Manager 4.3.0.

Use Case

Let's consider a use case where you want to send a custom HTTP header (e.g., X-Custom-Id) in the request to the API. You can use this custom header value as a claim in the JWT generated by the gateway. This can be useful in scenarios where you need to pass additional information about the user or the request to the API.

Prerequisites

Before we dive into the steps, make sure you have the following prerequisites:

WSO2 API Manager 4.3.0 installed and running
A basic understanding of WSO2 API Manager and JWT
Familiarity with XML and JSON

Step 1: Create a Custom Claim

To add a custom claim to the JWT generated by the gateway, you need to create a custom claim in the WSO2 API Manager. You can do this by adding a new claim to the ClaimsConfig.xml file located in the <API-M_HOME>/repository/conf/identity directory.

<Claim>
    <ClaimURI>http://wso2.org/claims/customid</ClaimURI>
    <DisplayName>Custom ID</DisplayName>
    <Description>Custom ID</Description>
    <ClaimPattern>http://wso2.org/claims/customid</ClaimPattern>
    <SupportedQueryTypes>http://wso2.org/claims/customid</SupportedQueryTypes>
</Claim>

In the above example, we have added a new claim called Custom ID with the URI http://wso2.org/claims/customid.

Step 2: Configure the Gateway

Next, you need to configure the gateway to include the custom claim in the JWT generated by the gateway. You can do this by adding a new claim to the api-manager.xml file located in the <API-M_HOME>/repository/conf directory.

<APIGateway>
    <Gateway>
        <Claim>
            <ClaimURI>http://wso2.org/claims/customid</ClaimURI>
            <DisplayName>Custom ID</DisplayName>
            <Description>Custom ID</Description>
            <ClaimPattern>http://wso2.org/claims/customid</ClaimPattern>
            <SupportedQueryTypes>http://wso2.org/claims/customid</SupportedQueryTypes>
        </Claim>
    </Gateway>
</APIGateway>

In the above example, we have added a new claim called Custom ID with the URI http://wso2.org/claims/customid to the gateway configuration.

Step 3: Add a Custom Header

Now, you need to add a custom header to the request to the API. You can do this by adding a new header to the in sequence of the API.

<sequence xmlns="http://.apache.org/ns/synapse">
    <header name="X-Custom-Id" value="12345"/>
    <send>
        <endpoint>
            <address uri="http://localhost:8280/services/HelloWorld"/>
        </endpoint>
    </send>
</sequence>

In the above example, we have added a new header called X-Custom-Id with the value 12345 to the in sequence of the API.

Step 4: Configure the API

Finally, you need to configure the API to include the custom claim in the JWT generated by the gateway. You can do this by adding a new claim to the api.xml file located in the <API-M_HOME>/repository/deployment/server/synapse-configs/default directory.

<api xmlns="http://ws.apache.org/ns/synapse">
    <resource methods="GET">
        <inSequence>
            <header name="X-Custom-Id" value="12345"/>
            <send>
                <endpoint>
                    <address uri="http://localhost:8280/services/HelloWorld"/>
                </endpoint>
            </send>
        </inSequence>
        <outSequence>
            <property name="Authorization" value="Bearer {token}"/>
            <send>
                <endpoint>
                    <address uri="http://localhost:8280/services/HelloWorld"/>
                </endpoint>
            </send>
        </outSequence>
    </resource>
</api>

In the above example, we have added a new claim called Custom ID with the URI http://wso2.org/claims/customid to the API configuration.

Conclusion

In this article, we have learned how to add a custom header value as a JWT claim in WSO2 API Manager 4.3.0. We have covered the steps to create a custom claim, configure the gateway, add a custom header, and configure the API. By following these steps, you can add custom claims to the JWT generated by the gateway and use them in your API.

Frequently Asked Questions

Q: How do I add a custom claim to the JWT generated by the gateway?

A: You can add a custom claim to the JWT generated by the gateway by creating a new claim in the ClaimsConfig.xml file and configuring the gateway to include the custom claim in the JWT.

Q: How do I add a custom header to the request to the API?

A: You can add a custom header to the request to the API by adding a new header to the in sequence of the API.

Q: How do I configure the API to include the custom claim in the JWT generated by the gateway?

A: You can configure the API to include the custom claim in the JWT generated by the gateway by adding a new claim to the api.xml file.

Q: What is the URI of the custom claim?

A: The URI of the custom claim is http://wso2.org/claims/customid.

Q: What is the value of the custom header?

A: The value of the custom header is 12345.

Q: How do I verify the custom claim in the JWT?

A: You can verify the custom claim in the JWT by checking the Authorization header of the response.

Q: How do I troubleshoot issues with the custom claim?

A: You can troubleshoot issues with the custom claim by checking the logs of the WSO2 API Manager and the API.

===========================================================

Q&A

Q: How do I add a custom claim to the JWT generated by the gateway?

A: You can add a custom claim to the JWT generated by the gateway by creating a new claim in the ClaimsConfig.xml file and configuring the gateway to include the custom claim in the JWT.

Q: How do I add a custom header to the request to the API?

A: You can add a custom header to the request to the API by adding a new header to the in sequence of the API.

Q: How do I configure the API to include the custom claim in the JWT generated by the gateway?

A: You can configure the API to include the custom claim in the JWT generated by the gateway by adding a new claim to the api.xml file.

Q: What is the URI of the custom claim?

A: The URI of the custom claim is http://wso2.org/claims/customid.

Q: What is the value of the custom header?

A: The value of the custom header is 12345.

Q: How do I verify the custom claim in the JWT?

A: You can verify the custom claim in the JWT by checking the Authorization header of the response.

Q: How do I troubleshoot issues with the custom claim?

A: You can troubleshoot issues with the custom claim by checking the logs of the WSO2 API Manager and the API.

Q: Can I use a different URI for the custom claim?

A: Yes, you can use a different URI for the custom claim. However, make sure to update the ClaimsConfig.xml file and the api.xml file accordingly.

Q: Can I add multiple custom claims to the JWT?

A: Yes, you can add multiple custom claims to the JWT. However, make sure to update the ClaimsConfig.xml file and the api.xml file accordingly.

Q: How do I handle errors when adding a custom claim to the JWT?

A: You can handle errors when adding a custom claim to the JWT by checking the logs of the WSO2 API Manager and the API. You can also use try-catch blocks to catch any exceptions that may occur.

Q: Can I use a different header name for the custom header?

A: Yes, you can use a different header name for the custom header. However, make sure to update the in sequence of the API accordingly.

Q: Can I add a custom claim to the JWT generated by the gateway for a specific API?

A: Yes, you can add a custom claim to the JWT generated by the gateway for a specific API. However, make sure to update the api.xml file accordingly.

Q: How do I remove a custom claim from the JWT generated by the gateway?

A: You can remove a custom claim from the JWT generated by the gateway by updating the ClaimsConfig.xml file and the api.xml file accordingly.

Q: Can I use a different format for the custom claim in the JWT?

A: Yes, you can use a different format for the custom claim in the JWT. However, make sure to update the ClaimsConfig.xml file and the api.xml accordingly.

Q: How do I handle cases where the custom claim is not present in the JWT?

A: You can handle cases where the custom claim is not present in the JWT by checking the Authorization header of the response. You can also use try-catch blocks to catch any exceptions that may occur.

Conclusion

In this article, we have covered frequently asked questions on adding a custom header value as a JWT claim in WSO2 API Manager 4.3.0. We have provided answers to common questions and scenarios that may arise when working with custom claims in WSO2 API Manager. By following these answers, you can troubleshoot issues and resolve problems related to custom claims in WSO2 API Manager.

Additional Resources

For more information on WSO2 API Manager and custom claims, please refer to the following resources:

By following these resources, you can learn more about WSO2 API Manager and custom claims, and get help from the WSO2 community.