System Information Claims Value Provider

The System Information claims value provider includes system-level metadata in tokens. This provider exposes information about the Identity Server itself, such as entity ID, base URL, and zone information, enabling multi-tenant deployments and service discovery scenarios.

The System Information claims provider retrieves metadata about the Identity Server instance that issues the token. This information helps clients and APIs understand which system issued the token and enables dynamic configuration based on the issuing server’s properties.

Use Cases#

The System Information claims value provider enables deployment scenarios that require server metadata in tokens.

Common use cases include:

  • Multi-Tenant Deployments: Include entity ID or zone information to identify which tenant or organization issued the token, enabling shared APIs to route requests correctly
  • Service Discovery: Provide base URL information in tokens so clients can dynamically discover related endpoints without hardcoded configuration
  • Distributed Deployments: Include zone identifiers to help APIs understand which geographic region or data center issued the token for compliance and routing decisions
  • Dynamic Configuration: Enable clients to adjust behavior based on the issuing server’s properties, such as using different callback URLs for different environments
  • Audit and Tracing: Add server identification to tokens for comprehensive audit trails that track which specific server instance issued each token

Getting Started#

To create a System Information claims value provider, sign in to the Admin UI and navigate to ProfilesToken ServiceScopesClaims Providers.

Claims value providers in Admin UI
Claims value providers in Admin UI. (Admin UI version: 10.6)

Select + New Claims Value Provider, give the provider a unique identifier and choose the System Information type.

New System Information Claims Value Provider configuration in Admin UI
New claims value provider for system information in Admin UI. (Admin UI version: 10.6)

The provider automatically retrieves system metadata when tokens are issued. No external connections or additional configuration is required.

Available Attributes#

The System Information claims value provider can expose the following attributes:

  • entityId — The name of the organization operating the services, typically used as an identifier in multi-tenant scenarios
  • baseUrl — The base URL of the server, useful for service discovery and dynamic endpoint configuration
  • zone — The zone identifier for the node that issued the token, indicating geographic region or deployment environment

The System Information claims value provider returns static metadata about the Curity Identity Server configuration. These values remain constant for a given server instance unless the configuration changes.

Was this helpful?