All Questions
87
questions
0
votes
0
answers
78
views
ASP.NET Core IdentityServer4 in Production **Workflow**
I'm new to IdentityServer4(just implemented on development environment) and I'm a little bit lost with all the configuration required for a real world/production deployment
So far, I have made my own ...
0
votes
1
answer
98
views
Access_Tokens and Refresh_Tokens are generated even after expiry in IdentitiyServer4
We have a .NET Core application which uses IdentityServer4 for authentication and authorization. We are using azure active directory as IdentityProvider.
We are using Redis for Caching. Access_token ...
0
votes
0
answers
39
views
In identity server4 allowing consent page true consent page showing after allowing yes ,it workingbut redirect authorization url gives access denied
In identity server4 allowing consent page true consent page showing after allowing yes ,it workingbut redirect authorization url gives access denied
On frontend i am using angular with oidc-client ...
0
votes
2
answers
469
views
Identity Server 4, getting "invalid_client" error in auth 2.0 (authorization) workflow
I am using Identity server 4, and need to give my users access to other side. I have configured my application in third party site for SSO, so my application is acting as service provider for that ...
0
votes
0
answers
138
views
Identity Server 4: Google external provider : Can't redirect to my React client frontend after I sign in
I'm using Google as external provider to login in my app. The base url of my IdentityServer is https://localhost:5001. When I login on IS everything works nice: tap here to see. But when I try to ...
0
votes
1
answer
527
views
IdentityServer4 -How can I add clientId and clientSecret to services?
I have IdentityServer project and API. I get JWT Token from IdentityServer to send requests to my API.
In my API, I don't use clientId and clientSecret anywhere. I don't understand why???
When I ...
3
votes
0
answers
577
views
Is there a way to use MSAL completely offline on-premises in .NET Core app to get access and id tokens (without the need for Azure registered App)
Intro:
Microsoft Authentication Library (MSAL) provides an identity server and management services to issue, cache and validate access and id tokens for a range of types of applications using OAuth2.0 ...
1
vote
1
answer
883
views
How to customize token validation on IdentityServer?
As described in the above picture each API Call to the Resource provider (RP) with JWT access token RP ensures token reliability by asking from the IDP server, now I need to add my customization to ...
0
votes
0
answers
102
views
authentication redirect signin and log out uri
I've only used Identity Server to implement security so far. When I tried to use a different one, I've been asked to provide a callback url, which represents in a way the redirect uri, where the ...
0
votes
1
answer
706
views
what is best practice for authorize and authenticate a worker service in IdentityServer?
I have a service provider (SP) that is secured by Duende IdentityServer (IdP) and I can authorize and authenticate my users and check their access level permissions by using claims.
now I have a new ...
0
votes
1
answer
149
views
Browserless API protection with IdentityServer4
I've studied the OAuth2 and OpenId Connect protocols to secure resources, but something doesn't feel right.
How do you allow simple and direct access to an API protected by IdentityServer4?
The use ...
4
votes
1
answer
763
views
Custom React GUI for oidc-client-js
is there a way to user your custom React GUI with oidc-client-js? I know that if you trigger authentication endpoint using:
// PopUps might be blocked by the user, fallback to redirect
...
0
votes
1
answer
1k
views
How to validate IdentityServer4 access tokens through introspection
I am implementing a protected api via AccessToken released by IdentityServer4. Now my question is this, when from my client I make the call to the API with the Bearer token in the header, is there the ...
0
votes
0
answers
466
views
Specify response_type=token for SSO in Identity Server
I am attempting to set up SSO from our ASP.NET Core Identity Server app to an external identity provider. Basically a user that is authenticated on our external partner's website but isn't ...
4
votes
2
answers
1k
views
ASP.NET core blazor webassembly getting token for Identity Server 4 Postman testing
I am trying to test my api with postman in a blazor webassembly asp.net core hosted app with identity server 4 individual accounts. Unfortunately, despite having tried many different configuration ...