Volker
Reputation: 1817
IdentityServer4: scope authentication attribute?
Just asking, is there any way to protect different controllers or actions with different scopes? So far I have only seen one global scope for the whole app.
In identity server 3 there seems to have been a ScopeAuthorize attribute but I can't find it in IdentityServer4.
Upvotes: 3
Views: 3349
Answers (1)
Volker
Reputation: 1817
See https://github.com/IdentityServer/IdentityServer4/issues/247 . So you create a policy and then use that policy in the Authorize Attribute.
Upvotes: 3
Related Questions
- IdentityServer4 always returning "error": "invalid_scope"
- Constantly get invalid scope error after udating my identityserver4
- IdentityServer4 IdentityServer3.AccessTokenValidation
- Identity Server invalid scope in example from the documentation with version 4.0.0
- Authorize attribute not working with IdentityServer4 and .NET Core 3.1
- IdentityServer4 ValidIssuers
- IdentityServer4 upgrade from v3 to v4 - scope validation error
- How to use IdentityServer4 scopes in resource api
- Scopes and claims in IdentityServer4
- IdentityServer4 and using multiple scopes