.net core :Missing option SuppressIdentityHeuristicChecks / How to generate token without consider user identity

[chintan3100]

I am working with SPA which communicates with .net core web API. UI and API both are on a different domain. On login API I am generating JWT token + anti-forgery token but this token is not valid due to identity set to "". There should option like SuppressIdentityHeuristicChecks = false.

Is there any other way? For temporary soluton. I created separate API which generates anti-forgery token. So after login UI will call getAntiforgery token API with jwt token. So every time there two web call when user try to login.

[aspnet-hello]

This issue was moved to aspnet/Home#2413