Before reporting an issue

• I have searched existing issues
• I have reproduced the issue with the latest release

Area

token-exchange

Describe the bug

I added a test mapper that adds a key + value to the token to test.
Added it to both - source and target clients.
I can see the mapper running under evaluation in the admin interface and tokens are modified by mappers.

When I run token-exchange API request - the resulting token has no values applied from any mappers.

Version

19

Expected behavior

Configured target audience mappers should run.

Actual behavior

Mappers do not apply to confidential -> public token exchange.

How to Reproduce?

Add a mapper to target or source client that triggers token-exchange.

AbstractOIDCProtocolMapper that uses
OIDCAttributeMapperHelper.mapClaim(token, mappingModel, "test value"));

Not using impersonation. Triggering client is confidential exchanging towards the public audience/client.

Examine the resulting jwt.

Anything else?

No response