IdentityServer4

1.0.0

Introduction

The Big Picture
Terminology
Supported Specifications
Packaging and Builds
Support and Consulting Options
Demo Server
Contributing

Quickstarts

Overview
Protecting an API using Client Credentials
Interactive Applications with ASP.NET Core
ASP.NET Core and API access
Adding a JavaScript client
Using EntityFramework Core for configuration and operational data
Using ASP.NET Core Identity

Topics

Endpoints

Discovery Endpoint
Authorize Endpoint
Token Endpoint
UserInfo Endpoint
Device Authorization Endpoint
Introspection Endpoint
Revocation Endpoint
End Session Endpoint

Reference

IdentityServer Options
Identity Resource
API Scope
API Resource
Client
GrantValidationResult
Profile Service
IdentityServer Interaction Service
Device Flow Interaction Service
Entity Framework Support
ASP.NET Identity Support

Misc

Training
Blog posts
- Team posts
  - 2020
  - 2019
  - 2018
  - 2017
- Community posts
Videos

IdentityServer4

Blog posts
View page source

Blog posts¶

Team posts¶

2020¶

Flexible Access Token Validation in ASP.NET Core
Resource Access in IdentityServer4 v4 and going forward
Automatic Token Management for ASP.NET Core and Worker Services 1.0
Mutual TLS and Proof-of-Possession Tokens: Summary
Mutual TLS and Proof-of-Possession Access Tokens – Part 1: Setup
Hardening OpenID Connect/OAuth Authorize Requests (and Responses)
Hardening Refresh Tokens
OAuth 2.0: The long Road to Proof-of-Possession Access Tokens
Outsourcing IdentityServer4 Token Signing to Azure Key Vault
Using ECDSA in IdentityServer4

2019¶

Scope and claims design in IdentityServer
Try Device Flow with IdentityServer4
The State of the Implicit Flow in OAuth2
An alternative way to secure SPAs (with ASP.NET Core, OpenID Connect, OAuth 2.0 and ProxyKit)
Automatic OAuth 2.0 Token Management in ASP.NET Core
Encrypting Identity Tokens in IdentityServer4

2018¶

IdentityServer4 Update
IdentityServer and Swagger
Removing Shared Secrets for OAuth Client Authentication
Creating Your Own IdentityServer4 Storage Library

2017¶

Platforms where you can run IdentityServer4
Optimizing Tokens for size
Identity vs Permissions
Bootstraping OpenID Connect: Discovery
Extending IdentityServer4 with WS-Federation Support
Announcing IdentityServer4 RC1
Getting Started with IdentityServer 4
IdentityServer 4 SharePoint Integration using WS-Federation

Community posts¶

Blazor WebAssembly authentication and authorization with IdentityServer4
Additional API Endpoints to IdentityServer 4
Securing Hangfire Dashboard using an OpenID Connect server (IdentityServer 4)
OAuth 2.0 - OpenID Connect & IdentityServer
Running IdentityServer4 in a Docker Container
Connecting Zendesk and IdentityServer 4 SAML 2.0 Identity Provider
IdentityServer localization using ui_locales
Self-issuing an IdentityServer4 token in an IdentityServer4 service
IdentityServer4 on the ASP.NET Team Blog
Angular2 OpenID Connect Implicit Flow with IdentityServer4
Full Server Logout with IdentityServer4 and OpenID Connect Implicit Flow
IdentityServer4, ASP.NET Identity, Web API and Angular in a single Project
Secure your .NETCore web applications using IdentityServer 4
ASP.NET Core IdentityServer4 Resource Owner Password Flow with custom UserRepository
Secure ASP.NET Core MVC with Angular using IdentityServer4 OpenID Connect Hybrid Flow
Adding an external Microsoft login to IdentityServer4
Implementing Two-factor authentication with IdentityServer4 and Twilio
Security Experiments with gRPC and ASP.NET Core 3.0
ASP.NET Core OAuth Device Flow Client with IdentityServer4
Securing a Vue.js app using OpenID Connect Code Flow with PKCE and IdentityServer4
Using an OData Client with an ASP.NET Core API
OpenID Connect back-channel logout using Azure Redis Cache and IdentityServer4
Single Sign Out in IdentityServer4 with Back Channel Logout

Previous Next

© Copyright 2020, Brock Allen & Dominick Baier.

Built with Sphinx using a theme provided by Read the Docs.