IdentityServer4
aspnetcore1

Introduction

  • The Big Picture
  • Terminology
  • Supported Specifications
  • Packaging and Builds
  • Support and Consulting Options
  • Demo Server and Tests
  • Contributing

Quickstarts

  • Setup and Overview
  • Protecting an API using Client Credentials
  • Protecting an API using Passwords
  • Adding User Authentication with OpenID Connect
  • Adding Support for External Authentication
  • Switching to Hybrid Flow and adding API Access back
  • Using ASP.NET Core Identity
  • Adding a JavaScript client
  • Using EntityFramework Core for configuration data
  • Community quickstarts

Topics

  • Startup
  • Defining Resources
  • Defining Clients
  • Sign-in
  • Sign-in with External Identity Providers
  • Windows Authentication
  • Sign-out
  • Sign-out of External Identity Providers
  • Federated Sign-out
  • Consent
  • Protecting APIs
  • Deployment
  • Logging
  • Events
  • Cryptography, Keys and HTTPS
  • Grant Types
  • Secrets
  • Extension Grants
  • Resource Owner Password Validation
  • Refresh Tokens
  • Reference Tokens
  • CORS
  • Discovery
  • Adding new Protocols
  • Tools

Endpoints

  • Discovery Endpoint
  • Authorize Endpoint
  • Token Endpoint
  • UserInfo Endpoint
  • Introspection Endpoint
  • Revocation Endpoint
  • End Session Endpoint

Reference

  • Identity Resource
  • API Resource
  • Client
  • GrantValidationResult
  • IdentityServer Interaction Service
  • IdentityServer Options

Misc

  • Training
  • Blog posts
  • Videos
    • 2017
    • 2016
    • 2015
    • 2014
IdentityServer4
  • Docs »
  • Videos
  • Edit on GitHub

Videos¶

2017¶

  • 14/09 [Microsoft Learning] – Introduction to IdentityServer for ASP.NET Core - Brock Allen
  • 14/06 [NDC Oslo] – Implementing Authorization for Web Applications and APIs
  • 22/02 [NDC Mini Copenhagen] – IdentityServer4: New & Improved for ASP.NET Core - Dominick Baier
  • 02/02 [DotNetRocks] – IdentityServer4 on DotNetRocks
  • 16/01 [NDC London] – IdentityServer4: New and Improved for ASP.NET Core
  • 16/01 [NDC London] – Building JavaScript and mobile/native Clients for Token-based Architectures

2016¶

  • The history of .NET identity and IdentityServer Channel9 interview
  • Authentication & secure API access for native & mobile Applications - Dominick Baier
  • ASP.NET Identity 3 - Brock Allen
  • Introduction to IdentityServer3 - Brock Allen

2015¶

  • Securing Web APIs – Patterns & Anti-Patterns - Dominick Baier
  • Authentication and authorization in modern JavaScript web applications – how hard can it be? - Brock Allen

2014¶

  • Unifying Authentication & Delegated API Access for Mobile, Web and the Desktop with OpenID Connect and OAuth 2 - Dominick Baier
Previous

© Copyright 2016, Brock Allen & Dominick Baier Revision 01c0f23f.

Built with Sphinx using a theme provided by Read the Docs.
Read the Docs v: aspnetcore1
Versions
latest
3.1.0
aspnetcore2
aspnetcore1
Downloads
pdf
html
epub
On Read the Docs
Project Home
Builds
Free document hosting provided by Read the Docs.