Customize tokens returned from Okta with a static allow list