Blog posts¶
Team posts¶
2020¶
- Flexible Access Token Validation in ASP.NET Core
- Resource Access in IdentityServer4 v4 and going forward
- Automatic Token Management for ASP.NET Core and Worker Services 1.0
- Mutual TLS and Proof-of-Possession Tokens: Summary
- Mutual TLS and Proof-of-Possession Access Tokens – Part 1: Setup
- Hardening OpenID Connect/OAuth Authorize Requests (and Responses)
- Hardening Refresh Tokens
- OAuth 2.0: The long Road to Proof-of-Possession Access Tokens
- Outsourcing IdentityServer4 Token Signing to Azure Key Vault
- Using ECDSA in IdentityServer4
2019¶
- Scope and claims design in IdentityServer
- Try Device Flow with IdentityServer4
- The State of the Implicit Flow in OAuth2
- An alternative way to secure SPAs (with ASP.NET Core, OpenID Connect, OAuth 2.0 and ProxyKit)
- Automatic OAuth 2.0 Token Management in ASP.NET Core
- Encrypting Identity Tokens in IdentityServer4
2018¶
2017¶
- Platforms where you can run IdentityServer4
- Optimizing Tokens for size
- Identity vs Permissions
- Bootstraping OpenID Connect: Discovery
- Extending IdentityServer4 with WS-Federation Support
- Announcing IdentityServer4 RC1
- Getting Started with IdentityServer 4
- IdentityServer 4 SharePoint Integration using WS-Federation
Community posts¶
- Blazor WebAssembly authentication and authorization with IdentityServer4
- Additional API Endpoints to IdentityServer 4
- Securing Hangfire Dashboard using an OpenID Connect server (IdentityServer 4)
- OAuth 2.0 - OpenID Connect & IdentityServer
- Running IdentityServer4 in a Docker Container
- Connecting Zendesk and IdentityServer 4 SAML 2.0 Identity Provider
- IdentityServer localization using ui_locales
- Self-issuing an IdentityServer4 token in an IdentityServer4 service
- IdentityServer4 on the ASP.NET Team Blog
- Angular2 OpenID Connect Implicit Flow with IdentityServer4
- Full Server Logout with IdentityServer4 and OpenID Connect Implicit Flow
- IdentityServer4, ASP.NET Identity, Web API and Angular in a single Project
- Secure your .NETCore web applications using IdentityServer 4
- ASP.NET Core IdentityServer4 Resource Owner Password Flow with custom UserRepository
- Secure ASP.NET Core MVC with Angular using IdentityServer4 OpenID Connect Hybrid Flow
- Adding an external Microsoft login to IdentityServer4
- Implementing Two-factor authentication with IdentityServer4 and Twilio
- Security Experiments with gRPC and ASP.NET Core 3.0
- ASP.NET Core OAuth Device Flow Client with IdentityServer4
- Securing a Vue.js app using OpenID Connect Code Flow with PKCE and IdentityServer4
- Using an OData Client with an ASP.NET Core API
- OpenID Connect back-channel logout using Azure Redis Cache and IdentityServer4
- Single Sign Out in IdentityServer4 with Back Channel Logout