skoruba
commented
4 years ago It is by design, enpoints of AdminUI is able to access only admin. But you can change it according to your requirements.
Open jack1232 opened 4 years ago
skoruba
commented
4 years ago It is by design, enpoints of AdminUI is able to access only admin. But you can change it according to your requirements.
jack1232
commented
4 years ago Great. Thanks
I created a MVC client, from which I want to access the user claims from /api/Users/{id}/Claims. It works when I log in as the user with admin role. However, it returns 403 forbidden error if the user without the admin role. I just want to know this is by design or I miss something here? The user should be able to access his own claims even that user does not have the admin role.
Thanks Jack