Refreshing claims using Federated Identity Session Authentication Module (SAM)

gistfile1.cs

public async Task RefreshClaimsAsync()
{
    SessionSecurityToken token;
    if (FederatedAuthentication.SessionAuthenticationModule.TryReadSessionTokenFromCookie(out token))
    {
        // obtain their API access token using current identity
        var accessToken = await tokenManager.GetTokenFromStoreAsync(token.ClaimsPrincipal.Identity.Name);
        // Reload the claims
        await WriteSessionToken(accessToken);
    }
}

private async Task WriteSessionToken(ApiAccessToken accessToken)
{
    var client = ApiClient.FromConnectionString(Constants.CMSAPIConnectionStringName)
        .Configure(cfg => cfg.UseSessionTokenAuthentication(accessToken.GetToken()).LogUsing(logger));

    var authClient = client.GetAuthClient();
    
    var identity = await authClient.GetIdentityAsync();
    var claimsPrincipal = new ClaimsPrincipal(new ClaimsIdentity(identity.GetClaims(), "Forms"));

    logger.Trace("Writing SAM token to cookie.");

    // Start SAM
    var sessionToken = new SessionSecurityToken(claimsPrincipal);
    FederatedAuthentication.SessionAuthenticationModule.WriteSessionTokenToCookie(sessionToken);
}