Stack Overflow
Stack Overflow

Questions tagged [identityserver3]

OpenID Connect Provider and OAuth 2.0 Authorization Server Framework based on Katana.

IdentityServer 3 (IdSrv3) is a .NET/Katana-based framework and hostable component that allows implementing single sign-on and access control for modern web applications and APIs using protocols like OpenID Connect and OAuth2. It supports a wide range of clients like mobile, web, SPAs and desktop applications and is extensible to allow integration in new and existing architectures.

1321 questions
57
votes
4 answers

IdentityServer Flows

IdentityServer supports different OpenId Connect flows that are defined in the Flows enum and set for clients. There's also samples for each type of flow and many references to them in the docs but I could not find a simple definition list of what…
orad
  • 15,272
  • 23
  • 77
  • 113
55
votes
2 answers

Create partial login cookie for External Authentication

Recently I've implemented 2FA for my WebAPI using IdentityServer3. Everything works as expected if the login is made locally (using the IUserService). Now, I want to be able to do this login by issuing a partial login cookie. This means that I have…
Ricardo Mota
  • 1,194
  • 2
  • 12
  • 25
42
votes
7 answers

IdentityServer: The remote certificate is invalid according to the validation procedure

I'm trying to setup SSO using OWin and Thinktecture Identity Server but I am not having any luck getting the SSL certificate to work. At least I think that's the problem. All works fine when I'm in visual studio, but if I try to use IIS on my…
Bryan Flynn
  • 421
  • 1
  • 4
  • 4
32
votes
4 answers

IdentityServer3 - rejected because invalid CORS path

We have an ASP.NET MVC application that is authenticating without issue against IdentityServer3, however the web API part of the application using ApiController's start to fail if the user waits before proceeding with AJAX functionality after about…
Gavin
  • 5,629
  • 7
  • 44
  • 86
27
votes
2 answers

Update of System.IdentityModel.Tokens.Jwt causing breaking change in IdentityServer3 Client

Hopefully an easy one to resolve. Microsoft's System.IdentityModels.Tokens.Jwt package was updated yesterday on NuGet from 4.0.2.206211351 to v5.0. This is unfortunately causing a breaking change with some "standard" IdentityServer3 code. i.e. taken…
Ross Halliday
  • 785
  • 6
  • 19
26
votes
3 answers

IdentityServer "invalid_client" error always returned

I'm trying to use IdentityServer3, but don't know why I'm getting "invalid_client" error always, always no matter what I do. This is the code I'm using: //Startup.cs (Auth c# project) public void Configuration(IAppBuilder app) { var…
gabaros
  • 743
  • 1
  • 6
  • 24
24
votes
4 answers

How to invoke a NSwag client method that needs bearer token on request header?

I didn't get exactly how NSwag interact with IdentityServerX bearer tokens and adds it request header conventionally? My host api application implements IdentityServer3 with LDAP auth, so as far as i understand; if any host needs to a token for…
Oğuzhan Soykan
  • 2,522
  • 2
  • 18
  • 33
24
votes
8 answers

IDX10803: Unable to create to obtain configuration

My configuration has 3 sites: Identity Server (Idp), Windows Authentication host and my end-user client site. On the client site, I request a controller decorated with [Authorize] and Identity Server kicks in. The windows host at port 44305 is…
MADCookie
  • 2,596
  • 3
  • 26
  • 46
23
votes
2 answers

ASP.NET Core Identity SPA with React

I am confused and a bit lost about using ASP.NET Core Identity with a React SPA. I have read Microsoft documentation about ASP.NET Core Identity several times, mostly focusing on the Identity with SPA section, and yet I have to confess I still don't…
Rikai no hōhō
  • 737
  • 1
  • 7
  • 13
21
votes
4 answers

How would I generate the Identity Server signing certificate

In the identity server samples we find code like this in Startup.cs var certFile = env.ApplicationBasePath + "\\idsrv3test.pfx"; var signingCertificate = new X509Certificate2(certFile, "idsrv3test"); How would I go about replacing this for…
sunil
  • 5,078
  • 6
  • 28
  • 33
20
votes
12 answers

OWIN OpenIdConnect Middleware IDX10311 nonce cannot be validated

I have an application using the OWIN middleware for OpenIdConnect. The startup.cs file uses the standard implementation of app.UseOpenIdConnectAuthentication. The cookie is set to the browser, but it errors with: IDX10311: RequireNonce is 'true'…
gilm0079
  • 595
  • 1
  • 4
  • 18
20
votes
4 answers

Understanding Claims

I'm trying to get up to speed with OpenId Connect, OAuth2.0, Security Token Service and Claims. Imagine a scenario with a large website with many areas and different functionality e.g. Customer, Order, Supplier, Delivery, Returns etc. My question is…
David
  • 233
  • 1
  • 2
  • 10
19
votes
1 answer

IdentityServer3 bypassing the consents screen

I'd like to bypass the consents screen when a user logs in using IdentityServer3, granting all consents by default. Is there an way to configure this? This is the screen I wish to bypass:
Gavin
  • 5,629
  • 7
  • 44
  • 86
18
votes
11 answers

Unable to obtain configuration from well-known/openid-configuration

I am using ASP.NET 5, In my solution I have Web API, Identity Server and Angular 2 project and I am authenticating Angular 2 client by using Identity Server, Angular 2 client consumes web api by passing token in http request and web api authenticate…
amol
  • 1,497
  • 5
  • 17
  • 26
16
votes
3 answers

.NET Web API: Set a different Refresh Token Expiration time for different users

I'm using Identity Server 3 to authenticate and generate Access/Refresh tokens for my angular Client. I'm currently setting the Refresh Token to expire in 48 hours for my Angular Client. Some users who use my Angular application will need to be…
Mike D
  • 201
  • 3
  • 11
1
2 3
87 88