.Net Core 3.1 as a standalone Identity Server
I would like to use a .Net Core 3.1 web app to allow an app (e.g. iPhone or Web Javascript) to authenticate with a username and password and receive a Jason Web Token (JWT) that contains claims about the user... if it succeeds, then the JWT can be sent as a bearer token to an API that would decode and validate the JWT (the token would be asymmetric and use a public/private key pair) and retrieve any claims that are embedded... perhaps a bonus if the app could decode the JWT as well in order to retrieve any claims.
Any thoughts on if this approach is possible? And, if there are any discussions or examples of how this might be done, that would be terrific.
Take a look at the examples that IdentityServer4 is providing. This sample/quickstart includes the case you are describing. https://github.com/IdentityServer/IdentityServer4/tree/main/samples/Quickstarts/6_AspNetIdentity/src
The API needs to be a scope in the IdentityServer4 configuration. It has a connection with the authority (IdentityServer4):
services.AddAuthentication("Bearer")
.AddJwtBearer("Bearer", options =>
{
options.Authority = "https://localhost:5001";
options.TokenValidationParameters = new TokenValidationParameters
{
ValidateAudience = false
};
});
The Client, in this example an MVC Client, needs to be a client in IdentityServer4. There are many types of GrantTypes. https://identityserver4.readthedocs.io/en/latest/topics/grant_types.html
services.AddAuthentication(options =>
{
options.DefaultScheme = "Cookies";
options.DefaultChallengeScheme = "oidc";
})
.AddCookie("Cookies")
.AddOpenIdConnect("oidc", options =>
{
options.Authority = "https://localhost:5001";
options.ClientId = "mvc";
options.ClientSecret = "secret";
options.ResponseType = "code";
options.Scope.Add("api1");
options.SaveTokens = true;
});
Hope this helps you out
- dotnet is not recognized as the name of a cmdlet
- ORA-00902: invalid datatype with EF Core
- When TwoFactorEnabled is activated, I get an error during login (implementation with Identity)
- The required element 'metadata' is missing from the manifest error when doing dotnet pack
- Blazor: Implementing 404 not found page
- NUnit TestFixture only on BaseTest class dotnet cli run
- Should GetEnvironmentVariable work in xUnit tests?
- Serialize the custom attributes along with class properties in C# on .NET?
- Assets file project.assets.json not found. Run a NuGet package restore
- Sending an email with @-mention
- Swashbuckle blocked by middleware authentication
- Cannot fetch the customSecurityAttributes data from Entra ID user Profile using Microsoft Graph API in Dotnet Webapi
- Unable to create new .NET Core projects in Visual Studio
- How do I define a List environment variable, so I can read it in C#
- Can I call an Azure fuction from a API Controller using .NET 6?
- C# delegate assignment inside ref struct
- DocFX `Invalid cref value "!:Exception" found in triple-slash-comments for` on Azure Pipeline
- Why do I get "The response ended prematurely" when using the HttpClient?
- Dependency Injection on AuthorizationOptions Requirement in DotNet Core
- Enable OPTIONS header for CORS on .NET Core Web API
- Applying pagination on subcollection
- How to register multiple implementations of the same interface with different dependencies
- How to do async Windows Service ExecuteAsync properly?
- Entity Framework Core 3.1.6 Item With Same Key Has Already Been Added
- How to pass type parameter to Body() when render fragment?
- Bind gRPC services to specific port in aspnetcore
- Rollback() but the query still getting new value
- .NET Core Dependency Injection with inherited interface
- Launch Visual Studio Code Programmatically
- How to get results from a Postgresql function using EF Core?