Skip to main content

Question

 Pritam Karar (PritamK17522585)

IN
PritamK17522585 Member since 2025 15 posts
Posted: 2 weeks ago
Last activity: 2 weeks ago
Posted: 7 Oct 2025 8:31 EDT
Last activity: 7 Oct 2025 8:31 EDT

Dynamic Access group mapping for OIDC SSO using Google

I am doing a POC work on OIDC SSO authentication using Google. I have hardcoded a model operator(Access group is HRApps:User) in the authentication service rule and its working fine. As I am using free Google as Idp, it only sends standard claims like name, email etc. and does not have provision to get claims for user role, access group etc.

However my requirement is that if I login with Proprietary information hidden then Access Group mapped should be "HRApps:User" and if I login with Proprietary information hidden then Access Group mapped should be "HRApps:Manager".

I have tried couple of options like Data Page and Data transform for setting model operator and also tried below option but still its not working. 

https://docs.pega.com/bundle/platform/page/platform/security/dynamicall…

Please help me with the solution. Code snippet would be really helpful.

 

To see attachments, please log in.
Pega Platform '24
Pega Platform
Case Management
Workflow Automation
Financial Services
System Architect

  • Reply

Related content:

Related content has not currently been identified for this post.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice