Hi I've setup my KeyCloak with an Azure AD as OIDC identity provider. The Azure AD IdP replies with user application roles in its token reply to KeyCloak, and I would like to add these roles to the resulting JWT token to the relaying parties. Can this be archived with one of the built-in identity provider mappers (if so, which one and how do I map/transfer the "roles" claim?), or will I need to implement a custom mapper? Med venlig hilsen / Kind regards [Systematic Logo]<http://www.systematic.com/> Per Erik Gransøe Senior Systems Engineer Søren Frichs Vej 39, 8000 Aarhus C Denmark Mobile: +45 3038 6841 Per.Erik.Gransoe@Systematic.com<mailto:Per.Erik.Gransoe@Systematic.com> www.systematic.com<http://www.systematic.com>