Hi all,

We are developing a canvas app in which a secure json payload is sent with various bits of information about the user accessing the app and the ID for the record that the user is viewing. Salesforce administrators can 'impersonate' other users by logging in and the information passed to our canvas app is that of the impoersonated user and not the admin doing the impersonation.

My question: Is it possible through apex to either find out that:
1) The user ID of the 'actual' user who is logged in (ie. the admin and not the impersonated user), OR
2) whether impersonation is occurring (ie. just a true/false result that says whether impersonation is occurring).

We need to incorporate special behavior for admins in our app when impersonation is occurring.

Thanks.

- Kash