Support for X.509 Client Certificates in Thinktecture.IdentityModel for Web API

An old post. But since I am writing about AuthenticationHandler..this is still relevant!

leastprivilege.com

Another RTM feature I was waiting for is (reasonable) SSL client certificate support in Web API.

Just like all the other authentication methods, you configure client certificate support on the AuthenticationConfiguration object. The following code configures the certificate to chain validation + check for a specific issuer subject name:

Validation modes are:

  • Chain validation only
  • Peer validation
  • Chain validation + issuer certificate thumbprint
  • Chain validation + issuer subject name
  • Thumbprint only

On the client side, this is the necessary code to include a client certificate with the call:

client.GetAsync(

 

The code + client sample is in the github repository. Nuget will be updated soon.

View original post

This entry was posted in ASP.NET, IdentityModel, Uncategorized, WebAPI. Bookmark the permalink.

8 Responses to Support for X.509 Client Certificates in Thinktecture.IdentityModel for Web API

  1. Prasad says:

    Hi Dominick,will you please say,what is mean by signature in token?How can we implement in .net?

  2. Prasad says:

    Token contains claims and signature.I didn’t understand what is mean by signature at developing time.I mean how can we implement and how exactly the certificate will play a role

  3. Utsav Vishnoi says:

    Hi Dominick,
    I am new to ThinkTecture and just want to know that can we use X509 certificates to sign JSON Web token using ThinkTecture ?

  4. Utsav Vishnoi says:

    Hi Dominick,

    Thanks for your your reply. Can you please share any Sample in which you explain how you are generating Json Web Token using ThinkTecture? Please guide me may be I am wrong. As per my understanding after looking in to your library, you are using ACS internally. You are generating Json Web token using OAuth class. Please suggest any better way to generate Json Web Token using ThinkTecture.

  5. Utsav Vishnoi says:

    Hi Dominick,
    Thanks for your response and guidance.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s