You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: aspnetcore/blazor/security/blazor-web-app-with-oidc.md
+26Lines changed: 26 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -232,6 +232,19 @@ Inspect the sample app for the following features:
232
232
233
233
For more information on (web) API calls using a service abstractions in Blazor Web Apps, see <xref:blazor/call-web-api#service-abstractions-for-web-api-calls>.
234
234
235
+
:::moniker range="< aspnetcore-10.0"
236
+
237
+
<!-- UPDATE 10.0 - Check the PU issue for 10.0 work to resolve both issues.
238
+
The docs issue is https://github.com/dotnet/AspNetCore.Docs/issues/34235. -->
The custom cookie refresher (`CookieOidcRefresher.cs`) implementation might need to be updated depending on your Identity Provider. For example, the refresher expects an ID token from the token endpoint. If the refresh token isn't an ID token with claims, the refresher can be updated with additional logic to continue to use the prior set of claims stored in the authentication cookie.
243
+
244
+
Additionally, work is scheduled for .NET 10 (November, 2025) on [`BlazorWebAppOidc AddOpenIdConnect with GetClaimsFromUserInfoEndpoint = true doesn't propogate role claims to client` (`dotnet/aspnetcore` 58826)](https://github.com/dotnet/aspnetcore/issues/58826) to refresh claims from the `/userinfo` endpoint.
245
+
246
+
:::moniker-end
247
+
235
248
## Client-side Blazor Web App project (`BlazorWebAppOidc.Client`)
236
249
237
250
The `BlazorWebAppOidc.Client` project is the client-side project of the Blazor Web App.
@@ -520,6 +533,19 @@ Inspect the sample app for the following features:
520
533
521
534
For more information on (web) API calls using a service abstractions in Blazor Web Apps, see <xref:blazor/call-web-api#service-abstractions-for-web-api-calls>.
522
535
536
+
:::moniker range="< aspnetcore-10.0"
537
+
538
+
<!-- UPDATE 10.0 - Check the PU issue for 10.0 work to resolve both issues.
539
+
The docs issue is https://github.com/dotnet/AspNetCore.Docs/issues/34235. -->
The custom cookie refresher (`CookieOidcRefresher.cs`) implementation might need to be updated depending on your Identity Provider. For example, the refresher expects an ID token from the token endpoint. If the refresh token isn't an ID token with claims, the refresher can be updated with additional logic to continue to use the prior set of claims stored in the authentication cookie.
544
+
545
+
Additionally, work is scheduled for .NET 10 (November, 2025) on [`BlazorWebAppOidc AddOpenIdConnect with GetClaimsFromUserInfoEndpoint = true doesn't propogate role claims to client` (`dotnet/aspnetcore` 58826)](https://github.com/dotnet/aspnetcore/issues/58826) to refresh claims from the `/userinfo` endpoint.
546
+
547
+
:::moniker-end
548
+
523
549
## Client-side Blazor Web App project (`BlazorWebAppOidc.Client`)
524
550
525
551
The `BlazorWebAppOidc.Client` project is the client-side project of the Blazor Web App.
0 commit comments