Symptoms

JSON payload is invalid since claims are generated without quotes(")

Impact

Token is invalid.

Conditions

BIG-IP creates JWT claim value without quotes when scope is not openid.

Workaround

Replace claim type 'string' with 'custom' adding quotes after backslash. apm oauth oauth-claim /Common/uid { claim-name uid claim-type custom claim-value "\"%{session.custom.name:noconv}\"" }

Fix Information

Fixed code to generate string-claims with quotes irrespective of scope

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips