[API] Configure role claim #485

thisIsTheFoxe · 2020-02-05T08:52:41Z

Hi,

While implementing I noticed that TokenValidationClaimRole is only available in the Admin-UI Project.

The API authorization looks like this where JwtClaimTypes.Role defaults to "role". In many cases, however, the actual role claim may be different..? _{(at least in my case..)}

Would be great if it was possible to also have something like TokenValidationClaimRole together with the already existing AdministrationRole in the API's appsettings.json to be able to configure admin-rights even better.. :)

The text was updated successfully, but these errors were encountered:

skoruba · 2020-02-14T17:55:05Z

Hey, do you mean this one? -
https://github.com/skoruba/IdentityServer4.Admin/blob/master/src/Skoruba.IdentityServer4.Admin.Api/appsettings.json#L16

thisIsTheFoxe · 2020-02-17T09:23:20Z

Exactly, but that only let’s you define the role-value.. the name (or key) of the role claim is JwtClaimTypes.Role which is the constant string "role".

Then again if #478 is the current idea, you would probably just have one setting file where you can specify both the role-claim and the actual role-value.. just as in the Admin project. ^^

skoruba self-assigned this Feb 14, 2020

skoruba added the question Further information is requested label Feb 14, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[API] Configure role claim #485

[API] Configure role claim #485

thisIsTheFoxe commented Feb 5, 2020

skoruba commented Feb 14, 2020

thisIsTheFoxe commented Feb 17, 2020

[API] Configure role claim #485

[API] Configure role claim #485

Comments

thisIsTheFoxe commented Feb 5, 2020

skoruba commented Feb 14, 2020

thisIsTheFoxe commented Feb 17, 2020