Closed danielwertheim closed 8 years ago
Following your guides on securing an WebAPI using this lib. My questiong is, if the API needs some simple claims like role, is there anyway those can be extracted from the token so that you don't have to look those claims up using get user info?
role
You can configure the Claims on the (resource) Scope configuration in IdSvr to include additional claims about the user in the access token.
Claims
Scope
Following your guides on securing an WebAPI using this lib. My questiong is, if the API needs some simple claims like
role
, is there anyway those can be extracted from the token so that you don't have to look those claims up using get user info?