How retrive user's role in NodeJS/ExpressJS using the Auth0's Core Authorization Feature Set

ferlito.sergio · September 18, 2020, 10:28am

I would like to integrate roles in my NodeJS/ExpressJS REST API app.
I currently use a rule to automatically retrieve from user login the email associated with the authentication method (I have enabled: Facebook, Twitter and Google Social connections).
I know that I can use

express-jwt-authz

to handle scopes as in this example code.

But in this way, I can enable or disable altogether a REST endpoint based on user scope.
How can I instead:

enable or disable the endpoint using user Role (not scope)
retrieve user role name and redirect to different routes

Thanks in advance.

sidharth.chaudhary · September 21, 2020, 11:16am

Hey @ferlito.sergio,

You can control the scopes based on user roles, something like this explained below:

Does this help?

Regards,
Sidharth

Topic		Replies	Views
How to check role of user in express application Help auth0 , api , authorization	10	15286	March 5, 2020
Auth0 RBAC: nodejs using express-jwt-authz Help user-authorization-rbac , directory-authorization	6	1931	January 6, 2023
How to "Protect a route based on specific claims" for "Standard Web Application" (NodeJS/Express) and Help auth0 , roles , rbac	4	3493	March 17, 2022
Web app authorization acc to role assigned Help apis , application	6	934	October 26, 2023
Trouble understanding scopes vs permissions Help api , scopes , access-token , api-authorization , scope	7	9322	January 4, 2021

How retrive user's role in NodeJS/ExpressJS using the Auth0's Core Authorization Feature Set

Related topics