Load User Profiles Client Side

asontha · August 31, 2022, 7:44pm

Hello, I want to load the user’s profile similar to the Management API’s /api/v2/users/{user_id}

The SPA uses account linking and I need this information in the front end so that I can prompt a user to refresh their account link (and access token) for sub accounts when it has expired. I can’t call the Management API to load an access token client side as it would require sharing the client id and secret with the browser, which is totally reckless.

asontha · August 31, 2022, 7:45pm

/userinfo is too shallow and doesn’t contain the profiles of the sub identities like the deprecated version of the API does.

asontha · August 31, 2022, 10:01pm

I ended up making a pass through api that checks that a user is authenticated and then loads their user profile from /api/v2/users/{user_id}. I don’t believe there should be any security concerns, but thoughts? Also, why do access_tokens stick around in a user’s profile after they’ve expired?

Topic		Replies	Views
SPA+API+User Profiles - Confused Get Help	2	3554	July 25, 2019
Can't get token with update:users scope Get Help auth0 , scopes , login , account-linking	8	5282	June 23, 2022
Get profile of other user client side Get Help user-profile , user-management	2	1601	January 25, 2023
Access user_metadata from a SPA Get Help ticket-management , support-center	2	978	September 19, 2023
End Users Ability to update Profile Get Help user-profile , profile-update	3	6771	June 23, 2022

Load User Profiles Client Side

Related topics