First, I want to thank all the Keycloak developers for your great help.   This is by far one of the best supported and documented open source products I have used in a long time.

My next question:

Say I have the redirect to login using the following URI:

https://<server>/auth/realms/<realm>/protocol/openid-connect/auth?response_type=code&client_id=broker&redirect_uri=http://localhost:5000/oauth2callback&scope=offline_access&nonce=fa7757e5-697c-4f3a-9760-610a6d19893b-d5c888df-3dd3-4a06-8ea0-7525fc9894de

And I wish to add additional parameters to the request which I can put into the JWT, or use the values as session attributes or the like.

How do I do that?

Thank you,

Reed Lewis