Update secure-data.md (#8487)

Fixes #8474 @gaazkam @smariussorin @C-BERBER please review
dotnet · Sep 11, 2018 · a09f423 · a09f423
1 parent 29e3638
commit a09f423
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/aspnetcore/security/authorization/secure-data.md b/aspnetcore/security/authorization/secure-data.md
@@ -264,6 +264,10 @@ Update the details page model:
 
 [!code-csharp[](secure-data/samples/final2.1/Pages/Contacts/Details.cshtml.cs?name=snippet)]
 
+## Add a user to a role
+
+Roles are stored in the Identity cookie. Changes made to user roles are not persisted to the cookie until the cookie is regenerated or the user signs out and signs in. Applications that add users to a role should call `SignInManager.RefreshSignInAsync(user)` to update the cookie.
+
 ## Test the completed app
 
 If the app has contacts: