fix #4580 - add logout everywhere support using SecurityStamp

Oqtane.Server/Security/ClaimsPrincipalFactory.cs

@@ -13,14 +13,17 @@ namespace Oqtane.Security
     public class ClaimsPrincipalFactory<TUser> : UserClaimsPrincipalFactory<TUser> where TUser : IdentityUser
     {
         private readonly ITenantManager _tenants;
+        // cannot utilize IUserManager due to circular references - which is fine as this method is only called on login
         private readonly IUserRepository _users;
         private readonly IUserRoleRepository _userRoles;
+        private readonly UserManager<TUser> _userManager;
 
         public ClaimsPrincipalFactory(UserManager<TUser> userManager, IOptions<IdentityOptions> optionsAccessor, ITenantManager tenants, IUserRepository users, IUserRoleRepository userroles) : base(userManager, optionsAccessor)
         {
             _tenants = tenants;
             _users = users; 
             _userRoles = userroles;
+            _userManager = userManager;
         }
 
         protected override async Task<ClaimsIdentity> GenerateClaimsAsync(TUser identityuser)
@@ -33,6 +36,7 @@ namespace Oqtane.Security
                 Alias alias = _tenants.GetAlias();
                 if (alias != null)
                 {
+                    user.SecurityStamp = await _userManager.GetSecurityStampAsync(identityuser);
                     List<UserRole> userroles = _userRoles.GetUserRoles(user.UserId, alias.SiteId).ToList();
                     identity = UserSecurity.CreateClaimsIdentity(alias, user, userroles);
                 }