openid-connect

问题 I am using IdentityServer3 and i have ASP.NET Core as Client application. Here is my LoggOff action method [HttpPost] public async Task LogOff() { await Microsoft.AspNetCore.Authentication.AuthenticationHttpContextExtensions.SignOutAsync(HttpContext, CookieAuthenticationDefaults.AuthenticationScheme); await Microsoft.AspNetCore.Authentication.AuthenticationHttpContextExtensions.SignOutAsync(HttpContext, OpenIdConnectDefaults.AuthenticationScheme); } When user logs out i see the following

问题 I am using IdentityServer3 and i have ASP.NET Core as Client application. Here is my LoggOff action method [HttpPost] public async Task LogOff() { await Microsoft.AspNetCore.Authentication.AuthenticationHttpContextExtensions.SignOutAsync(HttpContext, CookieAuthenticationDefaults.AuthenticationScheme); await Microsoft.AspNetCore.Authentication.AuthenticationHttpContextExtensions.SignOutAsync(HttpContext, OpenIdConnectDefaults.AuthenticationScheme); } When user logs out i see the following

问题 I am working on a project where it has two different solutions. "https://example.com" and inside that We have used to display pages of different project say "https://example123.com". I have implemented Azure AD authentication on "https://example123.com" project. So once it hits that url, AzureAD page shows up for authentication. Now I required to work the same authentication thing inside example.com which is using iframe to connect to project example123.com but getting issue - login

问题 I develop applications(SPA Application + API server and windows application) to use OpenID using keycloak. I want to control login when logging in with keycloak using keycloak groups (https://www.keycloak.org/docs/latest/server_admin/#groups). For example, is the following application specification possible? User A -> Group1 and Group2 User B -> Group1 Client A(SPA Application) -> Allow Group1 Client B(Windows Application) -> Allow Group2 results: User A -> Allow to use the SPA Application

问题 I've got a .Net Core 3.1 WebApi backend. I've got a Blazor WebAssembly front-end. I'm trying to login on the front-end (works) to AWS Cognito (setup as an OpenId provider) and then pass a Bearer token (JWT) to my backend API on each request so that the backend API can access AWS resources using temporary credentials (CognitoAWSCredentials). I am able to pass a Bearer token on each request from my Blazor front-end to the backend, however the only token I can find to access in Blazor is the

问题 I've got a .Net Core 3.1 WebApi backend. I've got a Blazor WebAssembly front-end. I'm trying to login on the front-end (works) to AWS Cognito (setup as an OpenId provider) and then pass a Bearer token (JWT) to my backend API on each request so that the backend API can access AWS resources using temporary credentials (CognitoAWSCredentials). I am able to pass a Bearer token on each request from my Blazor front-end to the backend, however the only token I can find to access in Blazor is the

问题 I want to use AWS cognito as a OpenId connect provider.My AWS cognito IDP will intern call my another OpenId provider to authenticate the user. It will then create its new token and hand over to callers as its own. The OpenID provider used internally by AWS cognito pool is transparent to user. User only configures AWS cognito as its IDP provider. User case User authenticates with My AWS IDP provider My IDP provider authenticates the user agains Googles IDP provider My IDP decodes the token

问题 I am trying to setup Keycloak server for our organisation. I have couple of questions. How can we use our existing user database to authenticate users - User Federation. Keycloak only has LADP/Kerberos options. Is there any custom plugin which can be used for MySQL user authentication or can we use existing connectors itself (LDAP/Kerberos) via some adapter for the database? Is it possible to have multiple Identity providers within Keycloak environment - (Have Keycloak as IDP for few services

问题 I am trying to setup Keycloak server for our organisation. I have couple of questions. How can we use our existing user database to authenticate users - User Federation. Keycloak only has LADP/Kerberos options. Is there any custom plugin which can be used for MySQL user authentication or can we use existing connectors itself (LDAP/Kerberos) via some adapter for the database? Is it possible to have multiple Identity providers within Keycloak environment - (Have Keycloak as IDP for few services

问题 I'm using Identity Server 4 and I'm trying to use the introspection endpoint, but just by the docs I'm not getting it. The docs just gives this example POST /connect/introspect Authorization: Basic xxxyyy token=<token> Now, why there is this basic authentication and what should be xxxyyy? I mean, there's no basic auth set in my app. I've just setup Identity Server 4 using ASP.NET Core as follows in the ConfigureServices : services.AddIdentityServer() .AddTemporarySigningCredential()