thinktecture-ident-server

CryptographicException KeySet does not exists

阅读更多关于 CryptographicException KeySet does not exists

问题 I am using Thinktecture Identity server and running it in azure. The issue I am having is that sometimes when I read the Federation metadata XML file or while signing in I get this Keyset does not exists CryptoGraphic exception . Now i know these exceptions can be caused if we do not have proper permissions but the thing is that it just happens sometimes and other times it is working fine. I am not sure how to debug this. Can someone please lead me in some direction. Also if someone has any

ASP.NET Identity Manager Error: error when trying to create a controller of type 'MetaController' (no parameterless public constructor)

阅读更多关于 ASP.NET Identity Manager Error: error when trying to create a controller of type 'MetaController' (no parameterless public constructor)

问题 I got ThinkTecture's IdentityManager running, but now when going to the '/idm/ url I get an error: An error occurred when trying to create a controller of type 'MetaController'. Make sure that the controller has a parameterless public constructor. The error was mentioned in a comment in another StackOverflow issue but a solution to this issue was not given. 回答1: While formulating this question I also found the solution in an issue of the IdentityManager GitHub repo. I had to change the

How to consume JWT access token and user claims using RestSharp

阅读更多关于 How to consume JWT access token and user claims using RestSharp

问题 I'm using below code to consume JWT access token from an Asp.net Web Api 2.2 service. I have followed this article to setup an authorization server in Web Api service. I'm using RestSharp in the client. client code: var client = new RestClient(http://localhost:58030); client.Timeout = 30000; var request = new RestRequest(@"/Oauth/Token", Method.POST); request.AddHeader("content-type", "application/x-www-form-urlencoded"); request.AddHeader("grant_type", "password"); request.AddHeader(

after federated authentication, redirect to originally requested url

阅读更多关于 after federated authentication, redirect to originally requested url

问题 We've setup federated security using ThinkTecture server. When a user wishes to access a particular URL, they get redirected to the Identity Provider Server (IDP), they login, get authenticated. Then, the IDP server will redirect the user back to the "Redirect URL" specified in the configuration for that Relying Party. Instead, I want it to be redirected to the originally requested URL. Is this possible? I've read a little about the wreply parameter, but not sure how I use this and intercept

OpenID Connect - Using IdentityServer for SSO between WinForms and Web Application

阅读更多关于 OpenID Connect - Using IdentityServer for SSO between WinForms and Web Application

I have Thinktecture IdentityServer set up and I have two trusted client applications, a WinForms app and a Web application and I want to implement SSO between them both. The user will first open the desktop application which has a login page that authenticates with the identity server. The desktop application will include some generated web links which when clicked open a new browser window to a secured area of the Web application that requires authentication, however, upon clicking these links I don't want the user to have to login again as they have already authenticated once via the desktop

How to add a custom MVC controller to Identityserver3 owin application

阅读更多关于 How to add a custom MVC controller to Identityserver3 owin application

问题 I have an owin app which issues OAuth token to different applications. Which is using IdentityServer3 for issuing tokens. My requirement is I need to implement custom MFA for some of the apps before releasing the token. The MFA controller is a custom implementation and have a custom view. I added an MVC controller in my owin app that contains identityserver3 code, and before release the token, to app, I redirected the user to this controller method. My issue is I am not able to read the user

OpenID Connect - Using IdentityServer for SSO between WinForms and Web Application

阅读更多关于 OpenID Connect - Using IdentityServer for SSO between WinForms and Web Application

问题 I have Thinktecture IdentityServer set up and I have two trusted client applications, a WinForms app and a Web application and I want to implement SSO between them both. The user will first open the desktop application which has a login page that authenticates with the identity server. The desktop application will include some generated web links which when clicked open a new browser window to a secured area of the Web application that requires authentication, however, upon clicking these

Access Requested Client from IUserService

阅读更多关于 Access Requested Client from IUserService

问题 I have an existing database that holds user credentials as well a map of what applications those user credentials have access to. In identity server I have each application setup as a client and users can authenticate successful. However, any user gets authorized for any application. I am wondering if there is a way that I can access which client is being requested from my implementation of IUserService? This way I can check if they are authorized for that app. 回答1: IdentityServer allows for

Is there a way to customize the Thinktecture.IdentityServer.v2 login page?

阅读更多关于 Is there a way to customize the Thinktecture.IdentityServer.v2 login page?

问题 I'm using the Thinktecture.IdentityServer.v2 app to perform SSO for a couple of internal apps but would like to customize the login page for each application to have a smoother user experience. I can't seem to find a way to do that. Can the login page be customized depending on the source application from where the client is comming? 回答1: "I can't seem to find a way to do that." - How hard have you tried? ;) The RP has the extra data fields - so you can hang like a CSS name off the RP in the

Thinktecture Identity server v3 Google provider

阅读更多关于 Thinktecture Identity server v3 Google provider

问题 I am getting issue while integration external provider i.e Google with Thinktecture identity server v3 .I am getting following error: "The client application is not known or is not authorized." Do any one have any idea about this error. 回答1: @Whoever, it looks like you have a mismatch on the RedirectUri values in the client and server. The RedirectUri property in the client startup defines the URI that will be called called after authentication by the identity server. The RedirectUris in the