Access Dynamic Claim on the Angular APP #8223 | Support

sukhdeep.dhillon created yesterday

ABP Framework version: v8.3.2
UI Type: Angular
Database System: EF Core (SQL Server)
Tiered (for MVC) or Auth Server Separated (for Angular): no

As I'm using dynamic claims, on the backend I can see that CurrentUser service is getting updated if I change the role of the current user.

on the frontend, if I call authService.refreshToken() the access token gets updated too.

but, this.config.getOne$('currentUser').subscribe((currentUser) => { } DOES NOT get reflected with the latest role for the current user.

how can I access the dynamic claim changes on the frontend for the currentuser

10 Answer(s)

0

maliming created yesterday
Support Team Fullstack Developer

hi

You can try to inject the ConfigStateService And call this.configState.refreshAppState();

1
0

sukhdeep.dhillon created yesterday

Hi, I have the following method that I'm using to test the dynamic claims

as you can see I'm changing the role of the current user on the backend.

if I return the first line with CurrentUser.Roles, it still shows old roles, (this means CurrentUser service is not updating with latest data)

but if I return the second line then it return the new roles
0

maliming created yesterday
Support Team Fullstack Developer

hi

but if I return the second line then it return the new roles

Yes. This is the default behavior.

The CurrentUser values from HttContext.User.

You can Changing the Current Principal

https://abp.io/docs/latest/framework/infrastructure/current-user#changing-the-current-principal
0

sukhdeep.dhillon created yesterday

lets say If I don't want to change the Current Principal, but the other approach I'm taking to change the role of the user.

is it right approach or is there any better way to solve it.
0

maliming created yesterday
Support Team Fullstack Developer

hi

You can get roles from user instead of CurrentUser.

The CurrentUser values from HttContext.User.
0

sukhdeep.dhillon created yesterday

hi,

so far what I have understood is that. if I wanna change the role of the current user (dynamic claim) so I should stick with IdentityUserManager to change the role of the current user, but for other purpose I can use CurrentUser service to read some data about user.

because in my implementation, all I wanna do change the role of the current user based on some conditions.

am I correct ?
0

maliming created yesterday
Support Team Fullstack Developer

hi

You should get the user, user roles from UserManager based on the CurrentUser.Id

var user = await _identityUserManager.GetByIdAsync(CurrentUser.GetId());

Then check the user roles to add your logic. For example, you could add or remove a role from the user.

if you want to return a string message. you can get it from user entity instead of CurrentUser.

the user entity has a higher priority than the CurrentUser.

In short, the CurrentUser is used to get the user entity.

1
0

sukhdeep.dhillon created 19 hours ago

thank you for explaining this,

from this, what I understood is that, I should always use _identityUserManager to change any dynamic claim for the current user.
0

maliming created 18 hours ago
Support Team Fullstack Developer

Yes. Correct. : )
0

sukhdeep.dhillon created 2 hours ago

Hi,

isGranted variable doesn't relfect the latest value when role is updated in this method before get to this line,

but in the next call, isGranted has the expected value and working fine.

so when role is changed, the associated permission of the role doesn't reflect in the same call.

Have an answer to this question? Log in and write your answer.