asp.net-identity

I'm trying to create an API and a website client for it. Lately I've been reading a lot about OAuth2 as a security mechanism and companies that offers authentication as a service such as auth0.com or even Azure active Directory and I can see the advantages in using them Because I'm used to always having the users in the same database and tables with relationships to the Users table in the form of One to Many such as below public class User { public string subjectId { get; set; } public virtual List<Invoice> Invoices { get; set; } /* More properties in here */ } public class Invoice { public

I know Visual Studio 2013 launches officially tomorrow and hopefully there will be more accompanying documentation especially as it regards ASP.NET Identity. I am hopping that in the meantime someone can help me out. All I am trying to do is to get the UserID of the currently logged in user as foreign key to a table I called Retailer. First here is the error message I am getting An entity object cannot be referenced by multiple instances of IEntityChangeTracker. Here is my POCO : public class Retailer { [Key] public int RetailerId { get; set; } public string BusinessName { get; set; } public

I need to immediately invalidate and log out any other logged in sessions when a user changes their password, but allow the active session (who has just updated their password) to remain logged in. To do this, I'm using the UpdateSecurityStampAsync(currentUser.Id); method on the UserManager. All other sessions are successfully logged out, but the active session is also logged out despite the call to SignInAsync after updating the security stamp. The Identity configuration I'm using is as follows: app.UseCookieAuthentication(new CookieAuthenticationOptions { AuthenticationType =

How can I create a custom authorize claim in MVC Core 2.0 (using AspNetCore.identity) to verify a custom user boolean property? I have extended the IdentityUser (ApplicationUser) to include a boolean value "IsDeveloper". I am using claims based authentication and would like to add a custom claim, but am not certain where to start. How can I create a custom claim that will: Find the current (customized) Core.Identity user. Evaluate the a custom identity user bool value? I understand the core identity claims MSDN: Claims Based Authentication , but am new to custom claims, so I am not sure where

I have a .Net Core 2.0 application that uses JWT tokens to authorize the user. This all works fine but I want to have some sort of API Key mechanism to allow other applications to integrate but I cannot seem to get this to work with the current authentication. Code: Startup.cs public void Configure(IApplicationBuilder app, IHostingEnvironment env, ILoggerFactory loggerFactory, IMemoryCache cache, IServiceProvider serviceProvider) { app.UseAuthentication(); ApiKeyMiddlewear(app, serviceProvider); app.UseMvc(routes => { routes.MapRoute( name: "default", template: "{controller=Home}/{action=Index