Author Archives: Dominick Baier

NDC London 2018 Artefacts

Posted on February 7, 2018 by Dominick Baier

“IdentityServer v2 on ASP.NET Core v2: An update” video “Authorization is hard! (aka the PolicyServer announcement) video DotNetRocks interview audio

Posted in ASP.NET Core, IdentityServer, PolicyServer, Uncategorized, WebAPI | Leave a comment

Native OIDC client sample for Windows that uses custom URI scheme handler

Posted on January 21, 2018 by Dominick Baier

Originally posted on brockallen:
Since the release of our IdentityModel.OidcClient client library we have had iOS and Android samples for using the system browser to allow a user to authenticate with the token server. Receiving the results from the system…

Posted in Uncategorized | 1 Comment

Announcing PolicyServer

Posted on January 17, 2018 by Dominick Baier

Over the course of the last years Brock, Michele and I have all been actively designing and implementing identity solutions for customers of all sizes and industries. Solutions range from simple to complex – and almost always involve both identity … Continue reading →

Posted in PolicyServer | 20 Comments

NDC London 2018: IdentityServer Update

Posted on January 17, 2018 by Dominick Baier

We are at NDC in London right now and are about to start our session “IdentityServer4 v2 on ASP.NET Core v2 – an Update”. For those who can’t be here – you can find my slides on Speakerdeck. There will … Continue reading →

Posted in .NET Security, ASP.NET Core, IdentityServer, Uncategorized | Leave a comment

Sponsoring IdentityServer

Posted on December 17, 2017 by Dominick Baier

Brock and I have been working on free identity & access control related libraries since 2009. This all started as a hobby project, and I can very well remember the day when I said to Brock that we can only … Continue reading →

Posted in .NET Security, ASP.NET Core, IdentityServer, OAuth, OpenID Connect, Uncategorized, WebAPI | 1 Comment

Updated Templates for IdentityServer4

Posted on November 22, 2017 by Dominick Baier

We finally found the time to put more work into our templates. dotnet new is4empty Creates a minimal IdentityServer4 project without a UI. dotnet new is4ui Adds the quickstart UI to the current project (can be e.g added on top … Continue reading →

Posted in ASP.NET Core, IdentityServer, OAuth, OpenID Connect, WebAPI | 8 Comments

Missing Claims in the ASP.NET Core 2 OpenID Connect Handler?

Posted on November 15, 2017 by Dominick Baier

The new OpenID Connect handler in ASP.NET Core 2 has a different (aka breaking) behavior when it comes to mapping claims from an OIDC provider to the resulting ClaimsPrincipal. This is especially confusing and hard to diagnose since there are … Continue reading →

Posted in ASP.NET Core, IdentityServer, OpenID Connect, WebAPI | 6 Comments

End of IdentityServer3 Maintenance

Posted on November 6, 2017 by Dominick Baier

Yesterday we made the decision to stop development and maintenance of IdentityServer3. This has a couple of reasons: IdentityServer4 is the better OpenID Connect and OAuth 2 implementation in every aspect ASP.NET Core 2 is now a mature platform There … Continue reading →

Posted in IdentityServer, Uncategorized | 15 Comments

Using iOS11 SFAuthenticationSession with IdentityModel.OidcClient

Posted on October 29, 2017 by Dominick Baier

Starting with iOS 11, there’s a special system service for browser-based authentication called SFAuthenticationSession. This is the recommended approach for OpenID Connect and OAuth 2 native iOS clients (see RFC8252). If you are using our OidcClient library – this is … Continue reading →

Posted in .NET Security, IdentityModel, OAuth, OpenID Connect, Uncategorized, WebAPI | Leave a comment

Templates for IdentityServer4 v2

Posted on October 28, 2017 by Dominick Baier

I finally found the time to update the templates for IdentityServer4 to version 2. You can find the source code and instructions here. To be honest, I didn’t have time to research more advanced features like post-actions (wanted to do … Continue reading →

Posted in IdentityServer, OAuth, OpenID Connect, Uncategorized, WebAPI | Leave a comment