Comments (2)
Hi @dseller , thanks for the request.
What you're describing is how we think about Applications in FusionAuth. In FusionAuth you can have one-to-many Applications, each application represents an authenticated resource.
When a JWT is issued by FusionAuth, the applicationId
will be provided in the JWT payload.
https://fusionauth.io/docs/v1/tech/tutorials/json-web-tokens#jwt-payload
The Getting Started page has an overview of the User and Applications concepts in FusionAuth.
https://fusionauth.io/docs/v1/tech/getting-started/
https://fusionauth.io/docs/v1/tech/tutorials/create-an-application
Similar to how you describe the JWT and switching to a new "tenant" and receiving a new JWT, this also fits into how we see Applications. A JWT is issued to a user per application, once you have a valid JWT you can either use our OAuth login to receive a new JWT for another Application, or use our JWT APIs to issue yourself a new JWT for another Application from a valid JWT.
https://fusionauth.io/docs/v1/tech/apis/jwt#issue-a-jwt
Regarding to query by tenant, the User Search API allows you to use criteria such as Application Id, Tenant Id, Group Id and others to allow you to narrow your result set.
https://fusionauth.io/docs/v1/tech/apis/users#search-for-users
Let me know if you'd like a hand with any of these APIs, or if I can provide you additional information.
from fusionauth-issues.
Thanks for your elaborate response. I have implemented the solution using Applications as "tenants". In order to present the user with a list of available applications, I simply use the registrations array on the User object. Perfect!
from fusionauth-issues.
Related Issues (20)
- Issue creating an entity when there is more than one tenant and I don't select a tenant
- Offer a guided onboarding experience when starting FusionAuth HOT 2
- Clicking "discover endpoints" 4 times in rapid succession on the OIDC identity provider creates broken UX
- [Bug]: Creating a Google Identity Provider and then hitting back and save again causes a 500 error
- Fix fonts and styles on direct-downloads
- Application SMS template help popup text is for email field
- Improve error handling for the SAML login endpoint when the caller is missing a `Content-Type` request header HOT 2
- Restrict the access granted to third party applications HOT 1
- Allow for expansion of application roles and scopes in application search results HOT 2
- Require `aud` claim on OpenID Connect UserInfo endpoint HOT 2
- Update deps for 1.52.0
- Update deps for 1.51.0 HOT 1
- [Bug]: SMS Two Factor messages will always use the template configured on the tenant even if an application-level template is configured.
- Improve some first time setup items
- Update the sample configuration for React in the first time setup summary
- Checking for user.roles if it is equal to a specific role and based on that determine the URL Forgot-Password HOT 1
- Improve efficiency of lambda execution
- Add limitation to not allow a users username or email address to be their password
- Allow additional words to be added to the disallowed password dictionary
- [Bug]: Hosted backend does not support second-level domains HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from fusionauth-issues.