I am adding application specific claims in my Web Application OnValidateIdentity to Identity Sever's access token claims. I am grabbing the application specific claims for the logged in user querying the Database for every API call. Should I make the application specific claims to be injected in the token in Identity Server (to reduce the DB calls)?
Adding Application Specific claim after Web API Authentication (Identity Server)
327 views Asked by Sabby62 At
1
There are 1 answers
Related Questions in IDENTITYSERVER3
- Setting up IdentityServer wtih Asp.Net MVC Application
- How to setup different roles per application?
- How to switch users while developing?
- identityserver3 Oauth2 with logged in Windows User
- Tokens Getting too Large for Implicit Flow - Thinktecture IdentityServer3
- Identity Server OAuth Resource Owner Password Grant always returns invalid_client
- URL Rewrite for subdomain fails with identityserver3
- Identity Server v3 Custom Page Reset Password
- Redirect to Identity Server Login page from AngularJs http web api request
- How to setup an MVC client for IdentityServer3
- IdentityServer3 Microsoft Graph scopes and flow
- Setup custom usermanager with asp net identity in identityserver
- Identity Server Difference between IdentityServer4.EntityFramework and IdentityServer4.AspNetIdentity
- Storage of OAuth access tokens in Javascript clients (e.g. Angular)
- Client registration and login page with Identity server 4
Related Questions in IDENTITYSERVER4
- Role based Authorization on WebApi Controllers in IdentityServer4?
- No storage mechanism for grants specified. Use the 'AddInMemoryStores' extension method to register a development version
- How to implement Windows Authentication with IdentityServer 4
- Identity Server Difference between IdentityServer4.EntityFramework and IdentityServer4.AspNetIdentity
- Storage of OAuth access tokens in Javascript clients (e.g. Angular)
- Client registration and login page with Identity server 4
- Google Auth not returning a consistent ID with IdentityServer4
- IdentityServer4 RequireConsent true hangs
- Get current user name in IdentityServer4 & ASP.net Core
- Protecting .NET framework 4.x web API with Identity server 4 in
- Sharing of JWT Tokens
- Can I use IdentityServer4 spa JS UI instead of asp .net core mvc?
- Does IdentityServer4 have API to validate an access token?
- IdentityServer4 IdentityServer3.AccessTokenValidation
- How to get id_token along with access_token from identityserver4 via "password" grant_type?
Related Questions in THINKTECTURE-IDENT-SERVER
- Thinktecture multiple website connect ( SSO )
- How can restrict the use of Issued access token of one machine in another machine
- How to setup different roles per application?
- How to switch users while developing?
- Tokens Getting too Large for Implicit Flow - Thinktecture IdentityServer3
- Identity Server 3 login via Javascript without redirect
- Thinktecture IdServer V3 and Client Configuration from Database
- Identity Server 4: adding claims to access token
- Thinktecture single sign out
- How to check user role in a resource server when using Thinktecture.IdentityServer.v3
- How to integration between Thinktecture Identity Sever v3 and Authorization Server?
- Thinktecture identity server 3 Single Sign Out
- Thinktecture Identity server v3 with ASP.NET Identity architecture
- Sign out from multiple applications
- OpenId Connect, best approach to getting a bearer token client side to call WebApi after MVC signin?
Related Questions in THINKTECTURE
- What's the format of sid issued by IdentityServer4?
- How to exchange an refresh token for an access token .
- Adding Application Specific claim after Web API Authentication (Identity Server)
- Umbraco + OpenId + Thinktecture Puzzle
- ADFS + IdentityServer3 + Mobile + MVC
- Implementing ASP.Net Web Forms App with Identity Server 3 (possibly Thinktecture or not?)
- how to disable auto login in thinktecture IdentityServer
- Configuring ASP.Net Core to authenticate using OIDC against Thinktecture V2
- ASP.Net MVC 5 How to encrypt JWT Tokens
- Thinktecture IdentityManager doesn't work on IIS
- install-package Thinktecture.IdentityServer3 command gives error in visual studio package manager console?
- SSO between ASP.Net MVC and Flex applications
- thinktecture IdentityServer "remember me" configuration
- How to Configure IdentityManager
- How to expand maxclockskew for Issuing a security token in 'Thinktecture.IdentityModel.WSTrust' using 'UserNameWSTrustBinding'?
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Identity Server Token should only contain claims about the user. It should be ok to query the application specific claims when the token received. You can introduce a caching layer to reduce DB calls if that is a concern.
But if you have really valid reason these rules can be broken and add application-specific claims at identity server. (e.g: settings shared by multiple apps).