Identity Server 4 does not provide native impersonation support which I needed for one of my projects. I have implemented one on top of it.
Here is the sample project I did on GitHub.
This is a sample application to show a way to implement impersonation when using Identity Server.
- Authorization policy has been set up to restrict impersonation to users with specific roles.
- Admin users' email is added as a claim while impersonating so that it can be used while ending the impersonation.
- Logic is simple as authenticating with the victim users' email for impersonation with additional claims to track the impersonation and the impersonating user.