# Viewing Claims

There are 4 ways in which claims can be viewed:

1. By the user during the signup or login process.
2. Manually by the user in the Account UI.
3. Manually by an admin in the Admin UI.
4. Automatically by an admin client via the Management API.

## Viewed by the user

The user can view claims during signup or login using the Authentication API. Important is the score of the claims you want to view as the user needs to have a session with a (security) score at least equal to or larger as the score of the claim. Only claims within the score are returned.

The API call to view claims using the Authentication API looks as below (Postman documentation [here](https://documenter.getpostman.com/view/18129777/UVXgMHEv#e2721014-436c-4246-b5bd-5452e82defcb)):

```json
// GET https://{{tenant_id}}.api.quasr.io/attributes
// Authorization: Bearer <session_token>
// RESPONSE IS AN ARRAY OF CLAIMS
[
    {
        "id": "<claim_id>",
        "type": "claim", // FIXED
        "subtype": "<claim_subtype>",
        "value": "<claim_value>",
        "label": "<claim_label>",
        "score": "<claim_score>", // ALWAYS LOWER OR EQUAL TO SESSION SCORE
        "status": "PENDING|ENABLED" // DISABLED CLAIMS ARE NOT RETURNED
    }
]
```

Alternatively the user can also manually view claims in the Account UI or via the Management API. In the Account UI users can go to Attributes.

<figure><img src="/files/MB7thVVx7ImhNdYtJTX6" alt=""><figcaption></figcaption></figure>

The API call to view claims using the Management API looks as below (Postman documentation [here](https://documenter.getpostman.com/view/18129777/UVXgMHEv#f991126f-8705-4ac3-b987-9cb74ad9bd9a)):

```json
// POST https://{{tenant_id}}.api.quasr.io/graphql
// Authorization: Bearer <accesss_token>
{
    "query": `
        query listClaims($account: ID!) {
            listClaims(account: $account) {
                id
                subtype
                value
                label
                score
                status
            }
        }`,
    "variables": `{
        "account": "<account_id>" // REQUIRED
    }`
}
```

## Viewed by an admin

An admin can manually view claims in the Admin UI or via the Management API. In the Admin UI admins can go to Users, select the desired user, go to the Attributes tab.

<figure><img src="/files/scozYtwHUQQVL7FWP7MZ" alt=""><figcaption></figcaption></figure>

<figure><img src="/files/HxjNCfGzUfkKxTj64qaA" alt=""><figcaption></figcaption></figure>

The API call to view claims using the Management API looks as below (Postman documentation [here](https://documenter.getpostman.com/view/18129777/UVXgMHEv#f991126f-8705-4ac3-b987-9cb74ad9bd9a)):

```json
// POST https://{{tenant_id}}.api.quasr.io/graphql
// Authorization: Bearer <accesss_token>
{
    "query": `
        query listClaims($account: ID!) {
            listClaims(account: $account) {
                id
                subtype
                value
                label
                score
                status
            }
        }`,
    "variables": `{
        "account": "<account_id>" // REQUIRED
    }`
}
```


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.quasr.io/quasr/tenant-administration/attributes/viewing-claims.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.