Role based access configuration?

JessicaMulein · August 18, 2023, 6:42pm

I’m trying to follow ChatGPT’s advice on how to get my custom roles listed in the JWT claims.
I’ve added this to my login flow

exports.onExecutePostLogin = async (event, api) => {
const namespace = ‘https://dualitysocial.us.auth0.com/’;

// Check if the user has roles in app_metadata or user_metadata
let roles = ;
if (event.user.app_metadata && event.user.app_metadata.roles) {
roles = event.user.app_metadata.roles;
} else if (event.user.user_metadata && event.user.user_metadata.roles) {
roles = event.user.user_metadata.roles;
}
console.log(event.user.app_metadata.roles);
console.log(event.user.user_metadata.roles);
console.log(roles);

// Append roles to the ID and/or Access Token
api.idToken.setCustomClaim(namespace + ‘roles’, roles);
api.accessToken.setCustomClaim(namespace + ‘roles’, roles);
};

But I can’t find where to enable RBAC- ChatGPT says it is under the API somewhere, but I can’t find it anywhere, and the user metadata is empty.

rueben.tiow · August 18, 2023, 8:31pm

Hi @JessicaMulein,

Welcome to the Auth0 Community!

You can enable this setting by going to your Auth0 Dashboard > Applications > API > Your API and scrolling to the RBAC Settings section to switch on the Enable RBAC toggle.

Thanks,
Rueben

JessicaMulein · August 18, 2023, 9:52pm

Thank you. My problem was the default API doesn’t have this option but once I created a new one it was available.

Topic		Replies	Views
Role based access control in applications Get Help configuration , application	5	984	June 5, 2024
How to use RBAC with an Application (rather than an API)? Get Help aspnet-mvc , rbac	4	4326	July 12, 2020
Getting user role upon login Get Help auth0js , app_metadata , login , role	2	8704	March 2, 2018
Add "roles" to access token Get Help configuration , application	1	1574	April 16, 2024
Getting Roles for logged in user without having to add the MetaData manually Get Help	8	5383	March 20, 2021

Role based access configuration?

Related topics