Add support for "groups" in OIDC claims

[akshay196]

Preflight checklist

• [X] I could not find a solution in the existing issues, docs, nor discussions.
• [X] I agree to follow this project's Code of Conduct.
• [X] I have read and am following this repository's Contribution Guidelines.
• [ ] This issue affects my Ory Cloud project.
• [ ] I have joined the Ory Community Slack.
• [ ] I am signed up to the Ory Security Patch Newsletter.

Describe your problem

I was trying to store the "groups" information from claims received into user traits after OIDC login. Unfortunately claims variables in mapper Jsonnet only allowed specific standard claims defined here, that does not include groups attribute. I tried with GitLab and Okta OIDC login as for now. Both supports groups in its claims.

Describe your ideal solution

Claims variable should have groups attribute that is of type array of strings.

Workarounds or alternatives

I couldn't find alternative to fetch groups that OIDC user is part of after successful login.

Version

v0.9.0-alpha.3

Additional Context

No response

[aeneasr]

Makes sense to include all claims, maybe as another variable in the context like raw_claims or something like that - PRs welcomed :)

[deepto98]

Can I pick this up?

[aeneasr]

Sure!

[fehrnah]

This would also require #1912 to make sure the groups stay up to date with the IdP.

[akshay196]

Hey @deepto98, Just checking if there is any progress on this. Thanks.