Open Closed

Force users to reauthenticate #3823


User avatar
0
steve.burgess created
  • ABP Framework version: v5.3.4
  • UI type: Angular
  • DB provider: EF Core
  • Tiered (MVC) or Identity Server Separated (Angular): yes
  • Exception message and stack trace:
  • Steps to reproduce the issue:"

Hi, i'm currently using the microservice template using Azure openId connect as the authentication provider. I've just upgraded to 5.3.4. As part of the upgrade a number of endpoints have been moved under the new Account Service.

After the upgrade users attempting to edit their profile information receive an error message. I'm assuming this is because their auth token doesn't contain a claim for the Account Service. This is easily solved by having the user log off and back on, however i was wondering if there is a way to force all currently logged in users to have to reauthenticate?

Thanks,

Steve.


1 Answer(s)
  • User Avatar
    0
    berkansasmaz created
    Support Team .NET Developer

    The topic doesn't seem to be about ABP(should be no different from a regular ASP.NET application) but I found a resource for you => https://learn.microsoft.com/en-us/answers/questions/835816/how-to-user-re-authenticate-the-azure-ad-user-when.html

    To expire the session and force to re-authenticate with the existing user session, you could directly logout AAD and then clear the cache.

Made with ❤️ on ABP v9.1.0-preview. Updated on November 01, 2024, 05:35