This article has been indexed from DZone Security Zone
Introduction
In the previous post of this series, we saw different flows to get the token from IdentityServer and then pass those tokens as Authorization Headers in our HTTP Calls and the client application was able to get the data as expected.
Today, we will continue our journey and learn more about users and claims. So, if you are new to IdentityServer, I will suggest reading the previous posts in this series for some background information.
Read the original article: TokenBased Security, OAuth, OIDC, IdentityServer – Part 5