identityserver3

Unable to obtain configuration from well-known/openid-configuration

空扰寡人 提交于 2019-11-30 08:35:57
问题 I am using ASP.NET 5, In my solution I have Web API, Identity Server and Angular 2 project and I am authenticating Angular 2 client by using Identity Server, Angular 2 client consumes web api by passing token in http request and web api authenticate token and gives response, for this I have written a custom attribute which checks that user is authenticated or not When I consume API I am getting following exception and Web API returns 500 internal server error. System.InvalidOperationException

Transforming Open Id Connect claims in ASP.Net Core

佐手、 提交于 2019-11-30 06:57:46
I'm writing an ASP.Net Core Web Application and using UseOpenIdConnectAuthentication to connect it to IdentityServer3. Emulating their ASP.Net MVC 5 sample I'm trying to transform the claims received back from Identity Server to remove the " low level protocol claims that are certainly not needed ." In MVC 5 they add a handler for the SecurityTokenValidated Notification that swaps out the AuthenticationTicket for one with just the required claims. In ASP.Net Core, to do the equivalent, I thought that I would need to handle the OnTokenValidated in the OpenIdConnectEvents . However, at that

Redirect user after authentication with OpenIdConnect in ASP.Net MVC

£可爱£侵袭症+ 提交于 2019-11-30 05:28:56
问题 I am using OpenIdConnect provider with Owin/Katana for authentication in my asp.net mvc application. OpenIdConnect Provide authenticates users against Active Directory. I wanted to do a simple authorization check once the user is authenticated and redirect the user to another view. app.UseOpenIdConnectAuthentication(new OpenIdConnectAuthenticationOptions() { Authority = "url", Scope="scopes", ResponseType = "response", ClientId = "clientid", SignInAsAuthenticationType = "Cookies",

IdentityServer4 IdentityServer3.AccessTokenValidation

≡放荡痞女 提交于 2019-11-30 05:23:51
问题 Happy new year to everyone... I configured an IdentityServer4, and I can make successful ASP.net Core web api calls. But for asp.net framework 4.5.2 web apis, I got {"Response status code does not indicate success: 401 (Unauthorized)."} error from a .NET framework web api. I want to ask your help and opinion. I seached the topic with IS4, and found some entries about IdentityServer3.AccessTokenValidation compatibility. And according to the replies, I loaded a signing cert and called

How to use JWT tokens with WCF and WIF?

不问归期 提交于 2019-11-30 04:17:34
问题 General notes We're using IdentityServer3 and have been very happy with it so far. We've gotten to secure MVC and ASP.NET Web API applications very easily with the help of both MS and Thinktecture OWIN middlewares. The client we're working for still has a lot of SOAP WCF services, and this is where we're getting stuck. The Setup I'm not gonna lie, I'm far from being experienced with WCF, I've only used it for very basic scenarios - understand basicHttpBinding, no transport nor message

OWIN OpenIdConnect Middleware IDX10311 nonce cannot be validated

天涯浪子 提交于 2019-11-30 01:07:23
问题 I have an application using the OWIN middleware for OpenIdConnect. The startup.cs file uses the standard implementation of app.UseOpenIdConnectAuthentication. The cookie is set to the browser, but it errors with: IDX10311: RequireNonce is 'true' (default) but validationContext.Nonce is null. A nonce cannot be validated. If you don't need to check the nonce, set OpenIdConnectProtocolValidator.RequireNonce to 'false'. I've found that when running fiddler as I do for most debug projects this

c# Identity Server Bad Request - Request Too Long

烈酒焚心 提交于 2019-11-29 22:59:40
问题 I have an odd issue that I am trying to track down. If I deploy my client and Identity Server to Azure, using a self signed certificate then the code works. I have now moved it to our UAT environment, where the identity server is configured to use a purchased certificate. This certificate has been provided for a single domain. identity.mydomain.com The client has the password for this certificate so it can do what it needs to. When I browse to the identity server I can log in to the admin

IdentityServer BearerAuthentication from WebApi Middleware using angular2-jwt

怎甘沉沦 提交于 2019-11-29 17:51:29
after updating my project to angular 2 final i had a problem getting WebApi2 authoriaztion to work with IdentityServer3 and angular2-jwt. Before everything worked fine when in angular2-jwt configuration the headername was empty and the token-getter-method returned simply the token. After updating an empty headername caused an javascript-error: EXCEPTION: Failed to execute 'setRequestHeader' on 'XMLHttpRequest': '' is not a valid HTTP header field name. So first i had to provide a headername, in my root-module angular2-jwt config looked like this: provideAuth({ headerName: 'BearerToken',

IDX10803: Unable to create to obtain configuration

风格不统一 提交于 2019-11-29 11:05:16
问题 My configuration has 3 sites: Identity Server (Idp), Windows Authentication host and my end-user client site. On the client site, I request a controller decorated with [Authorize] and Identity Server kicks in. The windows host at port 44305 is apparently throwing an exception and the identity server is receiving a status 500. I can access the windows host site URL without any problem. I get back an XML document How do I debug and find out what that exception or error is that is stopping this

Transforming Open Id Connect claims in ASP.Net Core

做~自己de王妃 提交于 2019-11-29 09:25:40
问题 I'm writing an ASP.Net Core Web Application and using UseOpenIdConnectAuthentication to connect it to IdentityServer3. Emulating their ASP.Net MVC 5 sample I'm trying to transform the claims received back from Identity Server to remove the "low level protocol claims that are certainly not needed." In MVC 5 they add a handler for the SecurityTokenValidated Notification that swaps out the AuthenticationTicket for one with just the required claims. In ASP.Net Core, to do the equivalent, I
订阅 identityserver3