6:[["$","$Le",null,{}],["$","div",null,{"className":"min-h-screen bg-gray-100 p-6","children":[["$","$Lf",null,{}],["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"QAPage\",\"mainEntity\":{\"@type\":\"Question\",\"name\":\"Identityserver3 Update Permissions\",\"text\":\"

I wondering if i could update the current user claims w/o the user having to authenticate again.

\\n\\n

In my case the user will log into the application and will receive a set of claims. Later he will be able to change the customer his working with. Once that is done he need to receive a new set of claims.

\\n\\n

Does any one know if that can be done?

\\n\\n

Thanks in advance.

\\n\",\"author\":{\"@type\":\"Person\",\"name\":\"Felipe Loest\"},\"upvoteCount\":0,\"answerCount\":1,\"acceptedAnswer\":null}}"}}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mb-6 relative","children":[["$","div",null,{"className":"absolute top-4 right-4 flex flex-wrap space-x-2","children":[["$","span","identityserver3",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/identityserver3/1","children":"identityserver3"}]}]]}],["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://www.gravatar.com/avatar/8c4d682caec1e2e4d0154c7bc9e0ebf0?s=256&d=identicon&r=PG&f=y&so-version=2","alt":"Felipe Loest","className":"w-16 h-16 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/7237842/felipe-loest","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"Felipe Loest"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",1]}]]}]]}],["$","h1",null,{"className":"text-2xl font-bold text-gray-800 mb-4","children":"Identityserver3 Update Permissions"}],["$","p",null,{"className":"text-gray-700 mt-4","dangerouslySetInnerHTML":{"__html":"

I wondering if i could update the current user claims w/o the user having to authenticate again.

\n\n

Does any one know if that can be done?

\n\n

Thanks in advance.

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm mt-4","children":[["$","p",null,{"children":["Upvotes: ",0]}],["$","p",null,{"children":["Views: ",57]}]]}]]}],["$","div",null,{"className":"container mx-auto","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-6","children":["Answers (",1,")"]}],[["$","div","40989888",{"className":"bg-white shadow-md rounded-lg p-6 mb-6","children":[["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://www.gravatar.com/avatar/75681814fbbb90c9224ea5ed0f8324ee?s=256&d=identicon&r=PG","alt":"leastprivilege","className":"w-12 h-12 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/672453/leastprivilege","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"leastprivilege"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",18492]}]]}]]}],["$","p",null,{"className":"text-gray-700 mb-4","dangerouslySetInnerHTML":{"__html":"

You almost answered your own question - a token is not a good place to store permissions, because the only way to update the token content is to get a new token.

\n\n

Tokens are good from transmitting immutable identity data. Everything else belongs into the realm of application or business logic design.

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm","children":["$","p",null,{"children":["Upvotes: ",2]}]}]]}]]]}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mt-6","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-4","children":"Related Questions"}],["$","ul",null,{"className":"list-disc list-inside","children":[["$","li","54278192",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/54278192","className":"text-blue-600 hover:underline","children":"Managing User Permissions with IdentityServer 4"}]}],["$","li","43831364",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/43831364","className":"text-blue-600 hover:underline","children":"How do identityserver permissions work?"}]}],["$","li","66318916",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/66318916","className":"text-blue-600 hover:underline","children":"Refresh Roles in IdentityServer-Clients"}]}],["$","li","66178868",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/66178868","className":"text-blue-600 hover:underline","children":"Fetch permissions from identity server during authorization"}]}],["$","li","54869075",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/54869075","className":"text-blue-600 hover:underline","children":"Identity server 4 and user permissions"}]}],["$","li","37943156",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/37943156","className":"text-blue-600 hover:underline","children":"How to update a claim in ASP.NET Identity 3.0?"}]}],["$","li","41495793",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/41495793","className":"text-blue-600 hover:underline","children":"IdentityServer prompting for permissions after login"}]}],["$","li","21601720",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/21601720","className":"text-blue-600 hover:underline","children":"How do I do permissions in asp.net identity"}]}],["$","li","40918320",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/40918320","className":"text-blue-600 hover:underline","children":"Identityserver3 - User Impersonation"}]}],["$","li","22839881",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/22839881","className":"text-blue-600 hover:underline","children":"Asp.net Identity 2.0 update user"}]}]]}]]}]]}],["$","$L11",null,{}],["$","$L12",null,{}],["$","$L13",null,{}],["$","$L14",null,{}],["$","$L15",null,{}]]

Identityserver3 Update Permissions

Answers (1)

Related Questions