identityserver3

问题 Brock Allen released the new beta version of IdentityManager last week. There are quite some changes in the security model, so the configuration also changed. He even took some videos (Setting up ASP.NET Identity and Security and IdentityManager) on how to configure the new version properly. These well explain the usage in a classic ASP.NET MVC application, and also ADFS setup, but I couldn't find any help or sample code about how to make it work side by side with Identity Server v3. Can you

问题 In my implementation I am using OpenID-Connect Server (Identity Server v3+) to authenticate Asp.net MVC 5 app (with AngularJS front-end) I am planning to use OID Code flow (with Scope Open_ID) to authenticate the client (RP). For the OpenID connect middle-ware, I am using OWIN (Katana Project) components. Before the implementation, I want to understand back-channel token request, refresh token request process, etc using OWIN.. But I am unable to find any documentation for this type of

问题 In my implementation I am using OpenID-Connect Server (Identity Server v3+) to authenticate Asp.net MVC 5 app (with AngularJS front-end) I am planning to use OID Code flow (with Scope Open_ID) to authenticate the client (RP). For the OpenID connect middle-ware, I am using OWIN (Katana Project) components. Before the implementation, I want to understand back-channel token request, refresh token request process, etc using OWIN.. But I am unable to find any documentation for this type of

问题 I created a Self Signed Certificate for my internal development purpose using MakeCert.exe Step #1 : I Created a Root CA using the following Command makecert -n "CN=Bala root signing authority" -cy authority -r -sv root.pvk root.cer Step #2 : Installed the Root CA Certificate which is created in Step #1 using the following Command certutil -user -addstore Root root.cer Step #3 : I Created a Client Certificate using the following Command makecert -pe -n "CN=Bala Client" -a sha1 -cy end ^ -sky

问题 We are using the generic OpenID Connect middleware to use Google as an external identity provider using IdentityServer3. We don't have MetadataAddress or any special TokenValidationParameters set up (so it should be getting the metadata based on Authority, and then filling in parameters based on that, which should be fine). We are getting the following error highly intermittently. Other questions I've come up with that have this error seem to involve incorrect custom validation and are not

问题 We have asp.net MVC & angular application. We are using identityserver3 for access control to the application. Everything is working as expected, except one thing. Unauthorized users still have access to static content of the application. Is there any way to deny access to those files before user log in ? 回答1: Here is the link to the great post which led me to the solution => Intercepting file requests Steps I've taken to solve my problem: Added this line to my webconfig file. This will make

问题 I have set up a simple identity server on my development environment, configured as so: public void Configuration(IAppBuilder app) { Log.Logger = new LoggerConfiguration() .MinimumLevel.Verbose() .WriteTo.Trace() .CreateLogger(); app.Map("/identity", id => { id.UseIdentityServer(new IdentityServerOptions() { SiteName = "Tomas Services Identity Provider", SigningCertificate = CertificateService.Load(), Factory = IdentityFactory.Configure("IdServerConn"), RequireSsl = false }); }); } The

问题 I am trying to get IdentityServer3 setup and am following along and using a Pluralsight video (https://app.pluralsight.com/library/courses/building-securing-restful-api-aspdotnet/table-of-contents) as reference. I'm at the point of basic IS3 setup and am stuck at the "SigningCertificate" assignment for the ".UseIdentityServer()" call. I've seen similar code elsewhere on the Internet. My relevant code: public X509Certificate2 LoadCertificate() { var baseFolder = AppDomain.CurrentDomain

问题 In ASP.NET MVC app, I am trying to implement authentication against external OIDC service. For my testing I am using IdentityServer3 (https://identityserver.github.io/Documentation/) and public OIDC demo server: https://mitreid.org/ I cloned this sample from GitHub: https://github.com/IdentityServer/IdentityServer3.Samples/tree/master/source/MVC%20Authentication Then added the following code to register the public OIDC server as external login provider: private void ConfigureIdentityProviders

问题 We want an external identity provider within our identityserver where user is redirected to login to this external identity provider (Idp) and complete the authentication there. The external Idp redirects the response back to our identityserver where we want to form the user claims from the response and redirect back to the calling client. We followed the answer to this stackoverflow question. We implemented our own owin middleware following the the Anders Abel Tutorial and owin middleware's