How to get to the email_verified api int AuthO user profile with ASP.NET Core AUthorization Policy

yzolotarev · August 21, 2017, 10:58pm

Set up: ASP.NET Core Angular Auth0

So I have created an autorization policy like this:

services.AddAuthorization(options => {
options.AddPolicy("EmailConfirmed", policy =>policy.RequireClaim
("https://webatom.auth0.com/userinfo/email_verified","true")); });

I want to get the email_verified value and if its true then I want to allow the api cals in the MVC Controller

So after this I secure the actions with

[Authorize("EmailConfirmed")]

However I keep on getting a 403 forbidden. Must be something with the required claim type. Has anyone come across such issue?

jerrie · August 24, 2017, 1:47am

Have you confirmed that the id_token contains that claim? Also, have you confirmed that the User object actually contains that claim?

Here is a sample Razor page which shows how to dump the claims to the screen for you to inspect… https://github.com/auth0-samples/auth0-aspnetcore-mvc-samples/blob/master/Quickstart/00-Starter-Seed/SampleMvcApp/Views/Account/Claims.cshtml

Topic		Replies	Views
Rule for verified email results in the display of another error Help auth0 , rules , login	1	2126	January 8, 2024
Unable to obtain email address from authenticated user Help .net , userinfo , email	4	8667	March 2, 2018
How to identift a user in my .net Core Api? Help angular , net-core , identity	2	7229	April 16, 2019
.NET Core WebAP profile scope missing username and email claims Help jwt , api	3	5453	August 30, 2019
Email claim is getting even after adding in the scope Help jwt , auth0 , login	2	2334	December 22, 2022

How to get to the email_verified api int AuthO user profile with ASP.NET Core AUthorization Policy

Related topics