Blog posts¶

Team posts¶

2020¶

Flexible Access Token Validation in ASP.NET Core
Resource Access in OpenIdentityServer v4 and going forward
Automatic Token Management for ASP.NET Core and Worker Services 1.0
Mutual TLS and Proof-of-Possession Tokens: Summary
Mutual TLS and Proof-of-Possession Access Tokens – Part 1: Setup
Hardening OpenID Connect/OAuth Authorize Requests (and Responses)
Hardening Refresh Tokens
OAuth 2.0: The long Road to Proof-of-Possession Access Tokens
Outsourcing OpenIdentityServer Token Signing to Azure Key Vault
Using ECDSA in OpenIdentityServer

2019¶

Scope and claims design in IdentityServer
Try Device Flow with OpenIdentityServer
The State of the Implicit Flow in OAuth2
An alternative way to secure SPAs (with ASP.NET Core, OpenID Connect, OAuth 2.0 and ProxyKit)
Automatic OAuth 2.0 Token Management in ASP.NET Core
Encrypting Identity Tokens in OpenIdentityServer

2018¶

OpenIdentityServer Update
IdentityServer and Swagger
Removing Shared Secrets for OAuth Client Authentication
Creating Your Own OpenIdentityServer Storage Library

2017¶

Platforms where you can run OpenIdentityServer
Optimizing Tokens for size
Identity vs Permissions
Bootstraping OpenID Connect: Discovery
Extending OpenIdentityServer with WS-Federation Support
Announcing OpenIdentityServer RC1
Getting Started with IdentityServer 4
IdentityServer 4 SharePoint Integration using WS-Federation

Community posts¶

Blazor WebAssembly authentication and authorization with OpenIdentityServer
Additional API Endpoints to IdentityServer 4
Securing Hangfire Dashboard using an OpenID Connect server (IdentityServer 4)
OAuth 2.0 - OpenID Connect & IdentityServer
Running OpenIdentityServer in a Docker Container
Connecting Zendesk and IdentityServer 4 SAML 2.0 Identity Provider
IdentityServer localization using ui_locales
Self-issuing an OpenIdentityServer token in an OpenIdentityServer service
OpenIdentityServer on the ASP.NET Team Blog
Angular2 OpenID Connect Implicit Flow with OpenIdentityServer
Full Server Logout with OpenIdentityServer and OpenID Connect Implicit Flow
OpenIdentityServer, ASP.NET Identity, Web API and Angular in a single Project
Secure your .NETCore web applications using IdentityServer 4
ASP.NET Core OpenIdentityServer Resource Owner Password Flow with custom UserRepository
Secure ASP.NET Core MVC with Angular using OpenIdentityServer OpenID Connect Hybrid Flow
Adding an external Microsoft login to OpenIdentityServer
Implementing Two-factor authentication with OpenIdentityServer and Twilio
Security Experiments with gRPC and ASP.NET Core 3.0
ASP.NET Core OAuth Device Flow Client with OpenIdentityServer
Securing a Vue.js app using OpenID Connect Code Flow with PKCE and OpenIdentityServer
Using an OData Client with an ASP.NET Core API
OpenID Connect back-channel logout using Azure Redis Cache and OpenIdentityServer
Single Sign Out in OpenIdentityServer with Back Channel Logout

OpenIdentityServer

Navigation

Introduction

The Big Picture
Terminology
Supported Specifications
Packaging and Builds
Support and Consulting Options
Demo Server
Contributing

Quickstarts

Overview
Protecting an API using Client Credentials
Interactive Applications with ASP.NET Core
ASP.NET Core and API access
Adding a JavaScript client
Using EntityFramework Core for configuration and operational data
Using ASP.NET Core Identity

Topics

Endpoints

Discovery Endpoint
Authorize Endpoint
Token Endpoint
UserInfo Endpoint
Device Authorization Endpoint
Introspection Endpoint
Revocation Endpoint
End Session Endpoint

Reference

IdentityServer Options
Identity Resource
API Scope
API Resource
Client
GrantValidationResult
Profile Service
IdentityServer Interaction Service
Device Flow Interaction Service
Entity Framework Support
ASP.NET Identity Support

Misc

Training
Blog posts
- Team posts
  - 2020
  - 2019
  - 2018
  - 2017
- Community posts
Videos

Related Topics

Documentation overview
- Previous: Training
- Next: Videos

©2020, Brock Allen & Dominick Baier | Copyright © 2026 2pNza. | Powered by Sphinx 9.1.0 & Alabaster 1.0.0 | Page source