What's the difference between IdentityResources OpenId, Email and Profile?
Reading the Identity server docs at 'https://docs.identityserver.io/en/3.1.0/topics/resources.html', I am confused with IdentityResources. There are
- IdentityResources.OpenId()
- IdentityResources.Email()
- IdentityResources.Profile()
First of all what is OpenId() in this context? What are the differences between these three? For my case, my users are able to login with their email or username. Which should I use?
Thanks!
OpenId, Email and Profile are scopes, things that the client application can ask IdentityServer for.
These three scopes will then map to claims that then will end up in the Id-Token
The openid scope is a special scope that always must be included and that will one ask for the users (sub) unique identifier (userid). the Email will ask for the email details and the profile scope will ask for the profile details (webpage, gender...)
Just like this picture below shows. The requested scopes will control what will end up in the ID-token and access-token.
To complement this answer, I wrote a blog post that goes into more detail about this topic: IdentityServer – IdentityResource vs. ApiResource vs. ApiScope
- Failed to convert parameter value from a String to a Byte[]
- GetAwait().GetResult causes potential threading problems
- How to pass js function argument to inline c# in cshtml?
- Testing website overload
- How to set horizontal to list vertical li ul
- InvalidOperationException: Cannot find compilation library location for package 'System.Security.Cryptography.Pkcs'
- How to validate uploaded files in ASP.Net MVC
- Create a unit test to verify data from a SQL view in a .NET EF Core project
- Find sub string between two capital words in a text
- WsFederation using a local URL instead of login.microsoftonline.com
- How to highlight today's date in telerik datepicker
- Does PutACLAsync make a copy of an object?
- ASP.Net portable server
- Pass the selected value of a dropdown in to a URL.Action so that a modal form is displayed on a button click
- Clearing a selected DropDown item without bind-Value
- How can I troubleshoot a "401 unauthorized" error when generating a JWT token in ASP.NET?
- C# Binding Data to Text Box
- Access Web.config settings in Asp.Net Core App?
- Where is there a list of Server Variables or <allowedServerVariables>?
- SQL1159 Initialization error with DB2 .NET Data Provider, reason code 10, tokens 0.0.0, 9.7.3
- Can I disable login for a user account and still have working impersonation?
- Grid view - Column
- Calling async methods from non-async code
- What data types do the RangeValidator control support?
- IHttpClientFactory with Autofac in .NET 4.8
- Compilation Error after deoplyment. Doesn't recognize 'Theme' attribute
- if not equal condition in c#
- ASP.NET MailKit SMTP response
- 404.17 error - requested content appears to be script
- Enter Key with Two Login Controls