Yesterday we made the decision to stop development and maintenance of IdentityServer3. This has a couple of reasons:
- IdentityServer4 is the better OpenID Connect and OAuth 2 implementation in every aspect
- ASP.NET Core 2 is now a mature platform
- There is only that much time you can spend on OSS development and issue tracker support, so we decided to focus on current projects which are IdentityServer4, IdentityModel2 and oidc-client.js
This also applies to answering questions on the issue tracker – we recommend you either use StackOverflow for free support, or use our commercial support options.
Security vulnerabilities will be fixed ASAP of course. Please disclose them responsibly.
PS. If you are a customer or have an existing support contract, we will of course continue supporting you. If you want to start a new support contract for your IdentityServer3 deployment, please let us know.
leastprivilege.com 
Hi Dominick,
Do you have any documentation on upgrading IdentityServer 3 to IdentityServer 4?
Many thanks
There is no automatic upgrade path. I think some people wrote blog posts about it. Maybe you can find them
@Dominick, I need to upgrade from ID3 to ID4 but didnt found any step by step documentation.
Yes – because there isn’t any.
That being said – it is “conceptually compatible”.
lol ….. thanks for prompt response…..
You have done major updates in code for ID4.. that is great thing, but we are struggling to implement this at our end:(
Will you share some doc in future?
No – but you can buy support from us if you need help.
Hi Dominik. I was trying to upgrade IS3 to IS4 in our Identity service project, but I’ve found that the latest version of IS4 does not support .NET 4.5.2. Is that correct?
This is the error I’m getting:
Could not install package ‘IdentityServer4 2.0.2’. You are trying to install this package into a project that targets ‘.NETFramework,Version=v4.5.2’, but the package does not contain any assembly references or content files that are compatible with that framework. For more information, contact the package author.
Should I use IS4 1.5.2? From nuget feed, I can see It is the newest version supporting .NET 4.5.2.
Thanks!
ASP.NET Core 2 requires 4.6.1 – I recommend you update your .NET
Hi Dominick,
How long do you plan to support security vulnerabilities in IdentityServer 3?
Regards,
Adam
We don’t have plans to stop security fixes for the foreseeable future.
Cool. Thanks for the prompt reply.
Hi Dominick,
As it’s now 2019, do you still plan to support security fixes for IdentityServer3 for the foreseeable future, or has this changed?
Best regards
Andy
IdentityServer3 was designed for Katana 3. Katana 3 will go out of support in July 2019 (https://dotnet.microsoft.com/platform/support/policy/aspnet). So will IS3.
We will continue to do paid support. Contact us if that is something you want to discuss.
Many thanks for the quick reply and info Dominick!
Best regards
Andy