All Questions
Tagged with identityserver4 access-token
107
questions
0
votes
0
answers
22
views
In Identity Server, How to silently re-sign in an already logged session?
I had a configuration client + handler that worked only with cookies.
I have many users already logged with that cookies
That configuration didn't emit tokens, then I changed the client + handler to ...
0
votes
1
answer
649
views
Can I use .NET 8 Bearer Token Authentication Handler to create Reference tokens rather than a self contained JWT style token?
I'm currently using IdentityServer4 v3.1.1 with reference tokens but I want to move away from IdentityServer altogether if possible for a number of reasons including their new licensing policy and the ...
0
votes
0
answers
89
views
Generate Access Token to call another Api in Identity Server Mvc Controller
In our work, we've got multiple apis and we use Identity Server 4 as the authentication provider. Whenever a FE or BE app needs to call the Api, we just use the AccessToken to call Apis. The Apis ...
0
votes
1
answer
74
views
Why does GetUserInfoAsync() complain on "Bearer token not found"?
Here's my code :
var client = new HttpClient();
var firstResponse = await client.RequestPasswordTokenAsync(new PasswordTokenRequest
{
Address = disco.TokenEndpoint,
...
0
votes
1
answer
1k
views
Identity Server 4 /connect/token return 400 Bad Request when using grant_type:refresh_token
I'm using Identity Server 4 as the Identity Provider for an Anuglar SPA. The application authenticates and authorizes fine, however, randomly we encounter an issue where the logged user is suddenly ...
1
vote
0
answers
32
views
Protect a SignalR hub shared between many sites
I need to protect a SignalR hub shared between many sites.
At this moment this is obtained using a JWT Token that clearly identify the user logged to the site opening a connection with the SignalR hub....
0
votes
1
answer
439
views
IdentityServer Refresh AccessToken
Thank you for your time.I configured the AccessTokenLifetime in ids4 to be 65 seconds, and the expiration time in the user.Claims acquired by api when I accessed the api on the front end was assumed ...
0
votes
1
answer
487
views
IdentityServer API unauthorized if hosted in IIS
I added additional API to the Duende IdentityServer 6.2 as described here. Then I tried to access it from a sample App, using typed httpClient using their own library called AccessTokenManagement (aka ...
1
vote
2
answers
955
views
Add custom claim for token generation - Duende identity server
I am trying to configure my Duende (former known as identity server4) identity server for authentication and authorisation. For the authentication part, I am using an external authentication service ...
0
votes
1
answer
5k
views
How to Get Access Token and User Info: IdentityServer4 With AspNet Identity
Good day everyone,
So I successfully integrated IdentityServer 4 using AspNet Identity for authentication into my project. It redirects to the client after authentication, so thats fine. The problem ...
0
votes
1
answer
613
views
Reference token management
Reference token as an identifier to the access token stored in identity server. What is the best practice to manage it?
There was a claim changed, how to update the access token to reflect
the change....
1
vote
1
answer
664
views
Identity Server 4 - ExtensionGrant and TokenValidator
My company was in need to have a SSO solution with an external identity provider so I looked up the official documentation and found this: https://identityserver4.readthedocs.io/en/latest/topics/...
1
vote
0
answers
208
views
Can't implement IProfileService properly in Identity Server 4
I have a working authorization setup and obtain a token that contains the below. Seemingly, everything behaves as supposed to, the verification in profiles kicks in as expected etc.
{ ...
"awo&...
1
vote
1
answer
1k
views
Access token does not include scopes declared in Identity Server 4
Following roughly Scott's guide, I got it to work with authorization code flow. However, When I investigate the well-known, I see that junky_scope is listed as supported. My client and API scope/...
1
vote
1
answer
846
views
Is silent_redirect_uri obsolete when using grant type Code
I have a question about refresh access tokens.
I am using IdentityServer 4.1.2 with the following configuration:
new Client
{
ClientId = "myid",
AllowedGrantTypes = GrantTypes.Code,
...