An example of role-based authorization using client-side Blazor, WebAPI and ASP.NET Core Identity.
Read the full blog post at https://chrissainty.com/securing-your-blazor-apps-configuring-role-based-authorization-with-client-side-blazor/.
Companion code sample for my blog post - Configuring Role-based Authorization with client-side Blazor
License: MIT License
An example of role-based authorization using client-side Blazor, WebAPI and ASP.NET Core Identity.
Read the full blog post at https://chrissainty.com/securing-your-blazor-apps-configuring-role-based-authorization-with-client-side-blazor/.
Hey Chris, I found what I think is a small bug in this code. It seems that when you first log in, the roles aren't updated in the token/claims, which means that roles don't work properly until the page refreshes or some other activity results in an authenticationStateChanged
being flagged. I think this is because MarkUserAsAuthenticated
is only parsing out the user claim, rather than processing the full token from the new login to get all of the user and role claims out of it.
Seems like the fix is just to change the method to do this:
public void MarkUserAsAuthenticated(string email)
{
var authState = GetAuthenticationStateAsync();
NotifyAuthenticationStateChanged( authState );
}
since GetAuthenticationStateAsync
does the full parse of the JWT for all the roles.
I think I saw somebody else raise this issue in a comment or query somewhere, and you mentioned you were going to look into it, but I didn't see a fix. Hopefully this does it for you. :)
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.