Merge pull request #5579 from AnuradhaSK/impersonation-fixes

AnuradhaSK · web-flow · commit e8d356a5fda3 · 2025-09-20T19:01:42.000+05:30
Fix issues in user impersonation docs
diff --git a/en/asgardeo/docs/guides/authorization/user-impersonation/index.md b/en/asgardeo/docs/guides/authorization/user-impersonation/index.md
@@ -1,5 +1,5 @@
-{% set base_url = "api.asgardeo.io/{organization_name}" %}
-{% set base_url_sample = "api.asgardeo.io/bifrost" %}
+{% set base_url = "https://api.asgardeo.io/t/{organization_name}" %}
+{% set base_url_sample = "https://api.asgardeo.io/t/bifrost" %}
 
 
 {% include "../../../../../includes/guides/authorization/user-impersonation/index.md" %}
diff --git a/en/asgardeo/docs/guides/authorization/user-impersonation/via-business-application.md b/en/asgardeo/docs/guides/authorization/user-impersonation/via-business-application.md
@@ -1,5 +1,4 @@
-{% set base_url = "https://api.asgardeo.io/{organization_name}" %}
-{% set base_url_sample = "https://api.asgardeo.io/bifrost" %}
-
+{% set base_url = "https://api.asgardeo.io/t/{organization_name}" %}
+{% set base_url_sample = "https://api.asgardeo.io/t/bifrost" %}
 
 {% include "../../../../../includes/guides/authorization/user-impersonation/user-impersonation-via-business-app.md" %}
diff --git a/en/asgardeo/docs/guides/authorization/user-impersonation/via-console.md b/en/asgardeo/docs/guides/authorization/user-impersonation/via-console.md
@@ -1,5 +1,5 @@
-{% set base_url = "https://api.asgardeo.io/{organization_name}" %}
-{% set base_url_sample = "https://api.asgardeo.io/bifrost" %}
-
+{% set base_url = "https://api.asgardeo.io/t/{organization_name}" %}
+{% set base_url_sample = "https://api.asgardeo.io/t/bifrost" %}
+{% set console_url = "https://console.asgardeo.io/t/{organization_name}" %}
 
 {% include "../../../../../includes/guides/authorization/user-impersonation/user-impersonation.md" %}
diff --git a/en/identity-server/7.0.0/docs/guides/authorization/user-impersonation.md b/en/identity-server/7.0.0/docs/guides/authorization/user-impersonation.md
@@ -1,4 +1,4 @@
-{% set base_url = "localhost:9443" %}
-{% set base_url_sample = "localhost:9443" %}
+{% set base_url = "https://localhost:9443" %}
+{% set base_url_sample = "https://localhost:9443" %}
 
 {% include "../../../../../includes/guides/authorization/user-impersonation.md" %}
diff --git a/en/identity-server/7.1.0/docs/guides/authorization/user-impersonation.md b/en/identity-server/7.1.0/docs/guides/authorization/user-impersonation.md
@@ -1,4 +1,4 @@
-{% set base_url = "localhost:9443" %}
-{% set base_url_sample = "localhost:9443" %}
+{% set base_url = "https://localhost:9443" %}
+{% set base_url_sample = "https://localhost:9443" %}
 
 {% include "../../../../../includes/guides/authorization/user-impersonation.md" %}
diff --git a/en/identity-server/next/docs/assets/img/guides/authorization/impersonation/org-api-authorization-impersonation.png b/en/identity-server/next/docs/assets/img/guides/authorization/impersonation/org-api-authorization-impersonation.png
diff --git a/en/identity-server/next/docs/guides/authorization/user-impersonation/index.md b/en/identity-server/next/docs/guides/authorization/user-impersonation/index.md
@@ -1,4 +1,4 @@
-{% set base_url = "localhost:9443" %}
-{% set base_url_sample = "localhost:9443" %}
+{% set base_url = "https://localhost:9443" %}
+{% set base_url_sample = "https://localhost:9443" %}
 
 {% include "../../../../../../includes/guides/authorization/user-impersonation/index.md" %}
diff --git a/en/identity-server/next/docs/guides/authorization/user-impersonation/via-console.md b/en/identity-server/next/docs/guides/authorization/user-impersonation/via-console.md
@@ -1,4 +1,5 @@
 {% set base_url = "https://localhost:9443" %}
 {% set base_url_sample = "https://localhost:9443" %}
+{% set console_url = "https://localhost:9443/console" %}
 
 {% include "../../../../../../includes/guides/authorization/user-impersonation/user-impersonation.md" %}
diff --git a/en/includes/guides/authorization/user-impersonation.md b/en/includes/guides/authorization/user-impersonation.md
@@ -197,7 +197,7 @@ Subject token is a JWT token that contains information on both the impersonated
 === "Request Format"
 
     ``` bash
-    https://{{base_url}}/oauth2/authorize?
+    {{base_url}}/oauth2/authorize?
       client_id={clientID}
       redirect_uri={redirect_uri}
       &state={sample_state}
@@ -211,7 +211,7 @@ Subject token is a JWT token that contains information on both the impersonated
 === "Sample Request"
     
     ``` bash
-    https://{{base_url_sample}}/oauth2/authorize?
+    {{base_url_sample}}/oauth2/authorize?
       client_id=jVcW4oLn1Jjb2T94H4gtPV9z5Y0a
       &redirect_uri=https://oauth.pstmn.io/v1/callback
       &state=sample_state
@@ -269,7 +269,7 @@ The decoded subject token may looks as follows:
   "nbf": 1718694997,
   "azp": "jVcW4oLn1Jjb2T94H4gtPV9z5Y0a",
   "scope": "internal_login internal_user_mgt_list internal_user_mgt_view",
-  "iss": "https://{{base_url}}/oauth2/token",
+  "iss": "{{base_url}}/oauth2/token",
   "may_act": {
     "sub": "2d931c9d-876e-46c0-9aba-f34501879dfc"
   },
@@ -290,7 +290,7 @@ Once a subject token is received, it can then be exchanged for an access token w
 === "Request Format"
 
     ``` bash
-    curl --location 'https://{{base_url}}/oauth2/token' \
+    curl --location '{{base_url}}/oauth2/token' \
     --header 'Content-Type: application/x-www-form-urlencoded' \
     --header 'Authorization: Basic <base64 Encoded (clientId:clientSecret)>' \
     --data-urlencode 'subject_token={subject_token}' \
@@ -304,7 +304,7 @@ Once a subject token is received, it can then be exchanged for an access token w
 === "Sample Request"
 
     ``` bash
-    curl --location 'https://{{base_url_sample}}/oauth2/token' \
+    curl --location '{{base_url_sample}}/oauth2/token' \
     --header 'Content-Type: application/x-www-form-urlencoded' \
     --header 'Authorization: Basic QVVhZkoyeWpXM2dUR3JZaWZCTlF1MTBXRWtNYToybWN1blJ1T1Y5WFQ3QXpzRDEyVmY3cGhOVWJRUmdlT0NtZW5Wa0xKQTR3YQ==' \
     --data-urlencode 'subject_token=eyJ4NXQiOiJDN3Q1elQ4UUhXcWJBZ3ZJ9HVXWTN4UnlwcE0iLCJraWQiOiJaR0UyTXpjeE1XWXpORGhtTVRoak1HSmlOamhpTmpNMFlqWXhNakJtTUdZeFl6ZzBabU0zWldJd1pHRmxZakk1TTJZelpHTmtaalkxWXpBeE5qZzNNUV9SUzI1NiIsInR5cCI6Imp3dCIsImFsZyI6IlJTMjU2In0.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.UmhvpiqrgbgJ8MSXNkzyUMbw5c2BG5oWv9HpBDrZwig2HkM-FpceFlGi4tnl45LGAxDeVE2NJBAII3Q6ccMK0pk9DM2piX0m7gtxtfNy9XQURMad39JOY1GTy8p9uJY0wYWrYXYCc3nyF83kwu4y3xHABYd1JNjcZgLW_B5M1XUUk05cOOyJLOvjaMAkl8DlohD9mAY4-C2UyaxsG8ftfth4mMJZeg3MJOW150cye9TAil0SACO6DIv3Tik7Wt_zyghSueBKQiOqgLEXZdphIT-7TWYASiJigTX0n_PKBF67qOo9tD5FIDEh5fQquXYAjPP9LHJYeK_C6dkh9jiX7w' \
@@ -333,7 +333,7 @@ The decoded access token may looks as follows:
 {
   "sub": "32bc4697-ed0f-4546-8387-dcd6403e7caa",
   "aut": "APPLICATION_USER",
-  "iss": "https://{{base_url_sample}}/oauth2/token",
+  "iss": "{{base_url_sample}}/oauth2/token",
   "client_id": "jVcW4oLn1Jjb2T94H4gtPV9z5Y0a",
   "aud": "jVcW4oLn1Jjb2T94H4gtPV9z5Y0a",
   "nbf": 1718695052,
@@ -446,7 +446,7 @@ The following diagram shows the detailed steps involved in receiving an imperson
 === "Request Format"
 
     ``` bash
-    curl --location 'https://{{base_url}}/oauth2/token' \
+    curl --location '{{base_url}}/oauth2/token' \
     --header 'Content-Type: application/x-www-form-urlencoded' \
     --header 'Authorization: Basic <base64 Encoded (clientId:clientSecret)>' \
     --data-urlencode 'client_id={Client_Id}' \
@@ -459,7 +459,7 @@ The following diagram shows the detailed steps involved in receiving an imperson
 === "Sample Request"
 
     ``` bash
-    curl --location 'https://{{base_url_sample}}/oauth2/token' \
+    curl --location '{{base_url_sample}}/oauth2/token' \
     --header 'Content-Type: application/x-www-form-urlencoded' \
     --header 'Authorization: Basic QVVhZkoyeWpXM2dUR3JZaWZCTlF1MTBXRWtNYToybWN1blJ1T1Y5WFQ3QXpzRDEyVmY3cGhOVWJRUmdlT0NtZW5Wa0xKQTR3YQ==' \
     --data-urlencode 'client_id=AUafJ2yjW3gTGrYifBNQu10WEkMb' \
diff --git a/en/includes/guides/authorization/user-impersonation/user-impersonation-via-business-app.md b/en/includes/guides/authorization/user-impersonation/user-impersonation-via-business-app.md
@@ -118,7 +118,7 @@ A subject token refers to a JSON Web Token (JWT) containing details about both t
 === "Request Format"
 
     ```bash
-    https://{{base_url}}/oauth2/authorize?
+    {{base_url}}/oauth2/authorize?
       client_id={clientID}
       &redirect_uri={redirect_uri}
       &state={sample_state}
@@ -130,7 +130,7 @@ A subject token refers to a JSON Web Token (JWT) containing details about both t
 
 === "Example"
     ```bash
-    https://{{base_url_sample}}/oauth2/authorize?
+    {{base_url_sample}}/oauth2/authorize?
       client_id=jVcW4oLn1Jjb2T94H4gtPV9z5Y0a
       &redirect_uri=https://oauth.pstmn.io/v1/callback
       &state=sample_state
@@ -188,7 +188,7 @@ The decoded subject token looks as follows:
   "nbf": 1718694997,
   "azp": "jVcW4oLn1Jjb2T94H4gtPV9z5Y0a",
   "scope": "internal_login internal_user_mgt_list internal_user_mgt_view",
-  "iss": "https://{{base_url}}/oauth2/token",
+  "iss": "{{base_url}}/oauth2/token",
   "may_act": {
     "sub": "2d931c9d-876e-46c0-9aba-f34501879dfc"
   },
@@ -208,7 +208,7 @@ After receiving a subject token, exchange it for an access token that carries th
 === "Request Format"
 
     ``` bash
-    curl --location 'https://{{base_url}}/oauth2/token' \
+    curl --location '{{base_url}}/oauth2/token' \
     --header 'Content-Type: application/x-www-form-urlencoded' \
     --header 'Authorization: Basic <base64 Encoded (clientId:clientSecret)>' \
     --data-urlencode 'subject_token={subject_token}' \
@@ -222,7 +222,7 @@ After receiving a subject token, exchange it for an access token that carries th
 === "Example"
 
     ``` bash
-    curl --location 'https://{{base_url_sample}}/oauth2/token' \
+    curl --location '{{base_url_sample}}/oauth2/token' \
     --header 'Content-Type: application/x-www-form-urlencoded' \
     --header 'Authorization: Basic QVVhZkoyeWpXM2dUR3JZaWZCTlF1MTBXRWtNYToybWN1blJ1T1Y5WFQ3QXpzRDEyVmY3cGhOVWJRUmdlT0NtZW5Wa0xKQTR3YQ==' \
     --data-urlencode 'subject_token=eyJ4NXQiOiJDN3Q1elQ4UUhXcWJBZ3ZJ9HVXWTN4UnlwcE0iLCJraWQiOiJaR0UyTXpjeE1XWXpORGhtTVRoak1HSmlOamhpTmpNMFlqWXhNakJtTUdZeFl6ZzBabU0zWldJd1pHRmxZakk1TTJZelpHTmtaalkxWXpBeE5qZzNNUV9SUzI1NiIsInR5cCI6Imp3dCIsImFsZyI6IlJTMjU2In0.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.UmhvpiqrgbgJ8MSXNkzyUMbw5c2BG5oWv9HpBDrZwig2HkM-FpceFlGi4tnl45LGAxDeVE2NJBAII3Q6ccMK0pk9DM2piX0m7gtxtfNy9XQURMad39JOY1GTy8p9uJY0wYWrYXYCc3nyF83kwu4y3xHABYd1JNjcZgLW_B5M1XUUk05cOOyJLOvjaMAkl8DlohD9mAY4-C2UyaxsG8ftfth4mMJZeg3MJOW150cye9TAil0SACO6DIv3Tik7Wt_zyghSueBKQiOqgLEXZdphIT-7TWYASiJigTX0n_PKBF67qOo9tD5FIDEh5fQquXYAjPP9LHJYeK_C6dkh9jiX7w' \
@@ -251,7 +251,7 @@ The decoded access token looks as follows:
 {
   "sub": "32bc4697-ed0f-4546-8387-dcd6403e7caa",
   "aut": "APPLICATION_USER",
-  "iss": "https://{{base_url_sample}}/oauth2/token",
+  "iss": "{{base_url_sample}}/oauth2/token",
   "client_id": "jVcW4oLn1Jjb2T94H4gtPV9z5Y0a",
   "aud": "jVcW4oLn1Jjb2T94H4gtPV9z5Y0a",
   "nbf": 1718695052,
diff --git a/en/includes/guides/authorization/user-impersonation/user-impersonation.md b/en/includes/guides/authorization/user-impersonation/user-impersonation.md
@@ -43,7 +43,7 @@ With the required permissions in place, the impersonator can now impersonate ano
 1. Log into the {{product_name}} Console with own credentials using the following URL.
 
     ```text
-    {{base_url}}
+    {{console_url}}
     ```
 
 2. Go to the **User management** > **Users** and select the user you want to impersonate.
@@ -152,15 +152,15 @@ By following the steps below, you permit a business application to use the imper
 
         ![Authorize impersonation API]({{base_path}}/assets/img/guides/authorization/impersonation/api-authorization-impersonation.png){: width="600" style="display: block; margin: 0; border: 0.3px solid lightgrey;"}
 
-    4. Enable user impersonation for organization user by registering ***Organization User Impersonation** API resource. (Optional)
+    4. Enable user impersonation for organization user by registering **Organization User Impersonation** API resource. (Optional)
 
         i. Under **API Resource**, select **Organization User Impersonation**.
 
         ii. Under **Authorized Scopes**, select **User Impersonation Scope for Organizations**.
 
         iii. Click **Finish**.
 
-            ![Authorize org impersonation API]({{base_path}}/assets/img/guides/authorization/impersonation/org-api-authorization-impersonation.png){: width="600" style="display: block; margin: 0; border: 0.3px solid lightgrey;"}
+          ![Authorize org impersonation API]({{base_path}}/assets/img/guides/authorization/impersonation/org-api-authorization-impersonation.png){: width="600" style="display: block; margin: 0; border: 0.3px solid lightgrey;"}
 
 ### Step 2: Create an application role that permits impersonation
 
@@ -318,7 +318,7 @@ To access organizations as an impersonator, you need to switch your impersonated
 === "Request Format"
 
     ```bash
-    curl --location 'https://{{base_url}}/oauth2/token' \
+    curl --location '{{base_url}}/oauth2/token' \
     --header 'Content-Type: application/x-www-form-urlencoded' \
     --header 'Authorization: Basic <base64 Encoded (clientId:clientSecret)>' \
     --data-urlencode 'client_id={Client_Id}' \
@@ -331,7 +331,7 @@ To access organizations as an impersonator, you need to switch your impersonated
 === "Example"
 
     ```bash
-    curl --location 'https://{{base_url_sample}}/oauth2/token' \
+    curl --location '{{base_url_sample}}/oauth2/token' \
     --header 'Content-Type: application/x-www-form-urlencoded' \
     --header 'Authorization: Basic QVVhZkoyeWpXM2dUR3JZaWZCTlF1MTBXRWtNYToybWN1blJ1T1Y5WFQ3QXpzRDEyVmY3cGhOVWJRUmdlT0NtZW5Wa0xKQTR3YQ==' \
     --data-urlencode 'client_id=AUafJ2yjW3gTGrYifBNQu10WEkMb' \
