Hello, I’m trying to better understand how much access an authenticated user has to their metadata. There’s conflicting documentation on it. On the User Details page in the Management console it calls user_metadata " Data that the user has read/write access to (e.g. color_preference, blog_url, e…

Hello @mike.benza welcome to the community! [image] mike.benza: Do I need to worry about the user editing their user_metadata if I don’t “build a form using the Management API?” How would the user even get a management API token? They can obviously see their access token once you give it to the…

How can a user access their user_metadata (read/write)

Help

tyf August 25, 2023, 11:52pm 3

Hello @mike.benza welcome to the community!

It is possible to obtain a limited Management API token client side. If the access token is scoped properly (read only) then you shouldn’t need to worry about a user editing metadata, but it is still generally recommended to handle this server side.

The following FAQ outlines this exact scenario:

Hope this helps!

Topic		Replies	Views
Modify user_metadata with access token Help user_metadata	4	11160	July 26, 2019
SPA - User update own user metadata Help api	2	3336	May 26, 2021
Using Management API Help management-api , users	5	1298	March 24, 2023
Is it possible to manipulate user metadata without using a Management API token? Help metadata , angular2 , angular4 , user-metadata , user	4	4697	March 2, 2018
Calling management API to update user meta data from SPA Help user_metadata	4	4570	June 17, 2021

How can a user access their user_metadata (read/write)

Related topics