openid-connect

问题 I'm using Asp.net core rc2 with OpenIdConnectServer. I'm using angular 1.x with augular-oauth2. After a few days, my error has digressed to Microsoft.AspNetCore.Hosting.Internal.WebHost:Information: Request starting HTTP/1.1 GET http://localhost:54275/api/Account/Username Microsoft.AspNetCore.Authentication.JwtBearer.JwtBearerMiddleware:Information: Successfully validated the token. Microsoft.AspNetCore.Authentication.JwtBearer.JwtBearerMiddleware:Information: HttpContext.User merged via

问题 I'm trying to access the OpenId UserInfo endpoint for a user on an Office365 Azure tenant, with the following GET: GET https://login.windows.net/common/openid/userinfo HTTP/1.1 Authorization: Bearer eyJ0eXAiOiJ(...remainder deleted for brevity...) Host: login.windows.net The response fails with "400 Bad Request", and a more specific error "AADSTS50063: Credential parsing failed. AADSTS90010: JWT tokens cannot be used with the UserInfo endpoint" HTTP/1.1 400 Bad Request Cache-Control: no-cache

问题 As we know Google Login is migrating from OpenId2.0 to OpenId connect. I have changed my code as like require 'oauth/openid.php'; $openid = new LightOpenID; $openid->realm = "http://".$_SERVER[HTTP_HOST]; $openid->identity = 'https://www.google.com/accounts/o8/id'; $openid->required = array('contact/email'); if (!headers_sent()){ header('Location: '.$openid->authUrl()); }else{ echo '<script type="text/javascript">'; echo 'window.location.href="'.$openid->authUrl().'";'; echo '</script>'; } }

问题 I have an OpenIdDict authentication server which is based on AspNet.Security.OpenIdConnect.Server . The setup works as expected. Now to do some in process integration;system tests which span the whole backend architecture I use the TestServer class. Why I test like this is another question Most test code coverage with least amount of work It has been decided to not do unit tests... (too much work they say) Real integration tests which span much less code where also seen as to much work when I

问题 We are developing a multi-tenant web application. Our tenants will be using Windows Azure Active Directory for authentication. We are using OWIN OpenIdConnect middleware to authenticate users. The response we receive after authentication process has id_token and authorization code. We also want to get the refresh token so that we can acquire new tokens once the id_token expires. Therefore in AuthorizationCodeReceived handler we use AcquireTokenByAuthorizationCode method in ADAL library to

问题 Does Azure Active Directory have an introspection endpoint as defined here https://tools.ietf.org/html/rfc7662 ? 回答1: No. You can check all the endpoints supported via the OpenID Provider Configuration for Azure Active Directory. If you and idea or feedback about Azure AD, you can try to submit them from UserVoice:Azure Active Directory. In particular you can vote on Introspection endpoint for Azure Active Directory Suggestion 来源： https://stackoverflow.com/questions/43378748/does-azure-active

问题 I am developping a Google Chrome extension, to allow users to authenticate with their Google Accounts, i decided to use Chrome Identity API . To authenticate the user in my Application i need to get the ID_Token (signed token) is there a way to get OpenID Connect Token with Google Chrome Identity API ? Thanks for your help ! 回答1: This is a paste of my answer from the other thread https://stackoverflow.com/a/32548057/3065313 I've came to the same problem yesterday and since I've found a

问题 I'm using IdentityServer to control access to an API. I have a separate authentication API which issues the tokens and validates access requests to secure API's. I give users the ability to generate an access token through a secure web application. I am using the resource owner password credential flow. Is there a way I can issue a refresh token without the user having to log in and request it? Or is there a way I can set the expiration of the initial access token? Code This is the code i'm

问题 When I ask the information of the user WSO2, the response contains only his sub. Request GET https://srv-wso2.domain.com:9443/oauth2/userinfo?schema=openid Request headers {Accept=[application/json, application/*+json], Authorization=[Bearer 50ff3e7940248bdc01e2c1d33de77537], Content-Length=[0]} Response body {"sub":"RECIF/arnaud@carbon.super"} In repository/conf/identity/identity.xml file, OpenIdConnect is configured to use http://wso2.org/claims as UserInfoEndpointClaimDialect. I use an

问题 I've set up a MediaWiki server on an Azure website with the PluggableAuth and OpenID Connect extensions. The latter uses the PHP OpenID Connect Basic Client library. I am an administrator in the Azure AD domain example.com , wherein I've created an application with App ID URI, sign-on URL and reply URL all set to https://wiki.azurewebsites.net/ . When I navigate to the wiki, I observe the following behavior (cookie values omitted for now): Client Request GET https://wiki.azurewebsites.net/