FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login

    Does Fusionauth have an "impersonation" feature?

    Scheduled Pinned Locked Moved Solved
    Q&A
    impersonate user management
    2
    4
    2.0k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • danD
      dan
      last edited by

      That would give an admin the ability to act as a given user for troubleshooting or other reasons?

      --
      FusionAuth - Auth for devs, built by devs.
      https://fusionauth.io

      1 Reply Last reply Reply Quote 0
      • danD
        dan
        last edited by

        This functionality isn't built in to FusionAuth.

        This kind of identity assumption is usually pretty application specific, so I'd probably implement it at that layer (maybe by using something like https://github.com/ankane/pretender if you are working in rails).

        Please feel free to file an issue explaining the use case for this functionality in an identity provider: https://github.com/FusionAuth/fusionauth-issues/issues

        --
        FusionAuth - Auth for devs, built by devs.
        https://fusionauth.io

        danD 1 Reply Last reply Reply Quote 0
        • danD
          dan @dan
          last edited by

          You also might be able to use the Vend JWT API to create tokens as needed.

          --
          FusionAuth - Auth for devs, built by devs.
          https://fusionauth.io

          M 1 Reply Last reply Reply Quote 0
          • M
            mark.shapiro @dan
            last edited by

            We actually just launched a feature using the Vend API to do impersonation. Seems to be work well so far.

            Basically just pass in a UserId with the ApplicationId you wanted to impersonate (for us), call the GetUser API, and then build a claims map from User (roles, entity grants, etc) into the right structure and pass that JWT back to the calling app to leverage.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post