Tag Archives: IdentityServer4

Switch tenants in an ASP.NET Core app using Azure AD with multi tenants

October 31, 2022 · by · in .NET, .NET Core, App Service, ASP.NET Core, Azure, Azure AD, dotnet, OAuth2 · 4 Comments

This article shows how to switch between tenants in an ASP.NET Core multi-tenant application using a multi-tenant Azure App registration to implement the identity provider. Azure roles are added to the Azure App registration and this can be used in the separate enterprise applications created from the multi-tenant Azure App registration to assign users and […]

Securing an Angular app which uses multiple identity providers

August 2, 2021 · by · in angular, OAuth2, Security · 3 Comments

Sometimes Angular applications are required to authenticate against multiple identity providers. This blog post shows how to implement an Angular SPA which authenticates using Auth0 for one identity provider and also IdentityServer4 from Duende software as the second. The SPA can logout from both of the identity providers individually and also revoke the refresh token […]

Create Certificates for IdentityServer4 signing using .NET Core

February 10, 2020 · by · in .NET Core, ASP.NET Core, dotnet, Security · 13 Comments

This article shows how to create certificates for an IdentityServer4 application to use for signing and token validation. The certificates are created using the CertificateManager nuget package. Both RSA and ECDsa certificates can be used for signing in IdentityServer4. Code: Certificates for IdentityServer4 signing using .NET Core Creating the Certificates in .NET Core A simple […]

Force ASP.NET Core OpenID Connect client to require MFA

December 16, 2019 · by · in .NET, .NET Core, ASP.NET Core, Azure, dotnet, MVC, OAuth2, Security, Web · 6 Comments

This article shows how an ASP.NET Core Razor Page application which uses OpenID Connect to sign in, can require that users have authenticated using MFA (multi factor authentication). Code: https://github.com/damienbod/AspNetCoreHybridFlowWithApi Blogs in this series Force ASP.NET Core OpenID Connect client to require MFA Send MFA signin requirement to OpenID Connect server using ASP.NET Core Identity […]

User claims in ASP.NET Core using OpenID Connect Authentication

November 1, 2019 · by · in .NET Core, ASP.NET Core, MVC · 4 Comments

This article shows two possible ways of getting user claims in an ASP.NET Core application which uses an IdentityServer4 service. Both ways have advantages and require setting different code configurations in both applications. Code: https://github.com/damienbod/AspNetCoreHybridFlowWithApi To use OpenID Connect in an ASP.NET Core application, the Microsoft.AspNetCore.Authentication.OpenIdConnect package can be used. This needs to be added […]

Building and securing an ASP.NET Core API with a hosted Vue.js UI

October 4, 2019 · by · in ASP.NET Core, dotnet, javascript, OAuth2, Security, SQLite, Typescript, UI, Uncategorized, Web · 8 Comments

This article shows how Vue.js can be used together with ASP.NET Core 3 in a single project. The Vue.js application is built using the Vue.js CLI and built to the wwwroot of the ASP.NET Core application. The ASP.NET Core application is used to implement the APIs consumed by the Vue.js UI. The application is secured […]

ASP.NET Core OAuth Device Flow Client with IdentityServer4

February 20, 2019 · by · in .NET, .NET Core, ASP.NET Core, MVC, OAuth2, Security, Web · 5 Comments

This article shows how to implement the OAuth 2.0 Device Flow for Browserless and Input Constrained Devices in an ASP.NET Core application. The tokens are then saved to a cookie for later usage. IdentityServer4 is used to implement the secure token server. Code: https://github.com/damienbod/AspNetCoreHybridFlowWithApi History 2020-12-11 Updated to .NET 5 2019-10-06 Updated to .NET Core […]

Securing a Vue.js app using OpenID Connect Code Flow with PKCE and IdentityServer4

January 29, 2019 · by · in .NET Core, ASP.NET Core, ASPNET5, dotnet, javascript, OAuth2, Security, Typescript, UI · 9 Comments

This article shows how to setup a Vue.js SPA application to authenticate and authorize using OpenID Connect Code flow with PKCE. This is good solution when implementing SPA apps requesting data from APIs on separate domains. The oidc-client-js npm package is used to implement the client side authentication logic and validation logic. IdentityServer4 and ASP.NET […]

OpenID Connect back-channel logout using Azure Redis Cache and IdentityServer4

December 18, 2018 · by · in .NET Core, ASP.NET Core, Azure, Deployment, MVC, Security, Web · 12 Comments

This article shows how to implement an OpenID Connect back-channel logout, which uses Azure Redis cache so that the session logout will work with multi instance deployments. Code: https://github.com/damienbod/AspNetCoreBackChannelLogout Posts in this series: OpenID Connect back-channel logout using Azure Redis Cache and IdentityServer4 Using Azure Key Vault with ASP.NET Core and Azure App Services Deploying […]

Implementing a multi-tenant OIDC Azure AD external login for IdentityServer4

August 15, 2018 · by · in ASP.NET Core, dotnet, MVC, OAuth2, Security · 6 Comments

This article shows how to setup a multi-tenant Azure AD external login for IdentityServer4 which uses ASP.NET Core Identity. Code: IdentityServer4 app with Identity Setting up the Azure AD Application registration for multiple tenants An Azure AD Application registration needs to be setup for the Active Directory tenant. Login to the Azure portal and switch […]

Older posts