Identity Server v3 as Federation Gateway only

Have configured SSO via SAML and WS-Federation in Production using ADFS. New customer is asking to integrate SSO via OpenID Connect (oidc) with Google+.

Identity Server v3 (IdSrv3) supports oidc, so I put together a prototype and I am able to integrate SSO using Google+ as follows:

MyWebApp <-- ws-fed --> ADFS <-- ws-fed --> IdSrv3 <-- oidc --> Google+

Current configuration has IdSrv3 present the user a Login page with option to enter Username and Password and button to use Google+ as IdP.

Can I configure IdSrv3 as a Federation Gateway with Google+ as the only IdP? (i.e. no username password fields)

Please advise, -Santiago

Solution

Sure - set the EnableLocalLogin to false in the AuthenticationOptions

https://github.com/IdentityServer/Thinktecture.IdentityServer3/blob/master/source%2FCore%2FConfiguration%2FAuthenticationOptions.cs#L47

after federated authentication, redirect to originally requested url
How to use InboundClaimTypeMap for claim mapping?
Add a claim to JWT as an array?
Does OpenID Connect support the Resource Owner Password Credentials grant?
Decode ThinkTecture Identity Server JWT token
Identity Server 4: adding claims to access token
Validating Against credentials Custom Users DB - IResourceOwnerPasswordValidator
IdentityServer 4: No storage mechanism for grants specified - use AddInMemoryStores
Prevent login using OpenId Connect in Asp.NET MVC
Signing certificate not found: CN=********.server.domain.com in Thinktecture
IdentityServer Flows
How do I encrypt the JWT tokens in Thinktecture Identity Server?
Basic IdentityServer configuration issue
Using different access method with thinktecture STS server
Skip IdentityServer3 login screen
jwtBearer bearer token with rc-1 update to ASP.Net 5
Thinktecture Identity Server 3 Asp.Net Identity Sample, constantly getting 401 authorization denied
Unable to use IdentityManager API from Postman
How to exchange an refresh token for an access token .
Identity Server v3 can't find endpoints
using Thinktecture.IdentityServer3 as a Federation Provider with transforming of claims
Bearer was not authenticated: Signature validation failed
Access token for API controller inside Identity server itself
Thinktecture Identity Server v3 How to keep Claims from external providers?
How do I enable logging in Thinktecture IdentityServer v3?
How to use ThinkTecture IdentityServer 3 in Web Api 2
Identity Server: Getting Token using APIs and avoiding Identity Login
Guidance on Thinktecture IdentityServer v3 - certificates
The remote certificate is invalid according to the validation procedure. Identity Server
SSO using Identity Server with SAML 2 with other Identity Providers