I'm using the APM to authenticate and authorize users via external OAuth identity providers, i.e. Azure. The APM successfully collected the OIDC token and access token, but unfortunately only the OIDC token (id_token) is parsed as session variable. Does anyone know why the APM doesn't parse the access_token? Did I miss any switch to turn parsing on or do I have to resolve this via an iRule?
I'd like to handle the access policy based on group or role memberships differently. They are only transported via the access token.