Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

DCC17 - Identity Server 4

651 views

Published on

These are the slides presented at Desert Code Camp

Published in: Technology
  • Be the first to comment

  • Be the first to like this

DCC17 - Identity Server 4

  1. 1. Identity Server ARE YOU AUTHENTICATED?
  2. 2. About me Chris Holwerda Architect and Developer for 20 years. Currently a consultant for Neudesic. @cholwerda www.chrisholwerda.com therealchrisholwerda@gmail.com
  3. 3. Today’s Landscape @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA https://identityserver4.readthedocs.io/en/release/intro/big_picture.html
  4. 4. Security Token Service @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA https://identityserver4.readthedocs.io/en/release/intro/big_picture.html
  5. 5. Identity Server @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA https://identityserver4.readthedocs.io/en/release/intro/terminology.html
  6. 6. Claims Identity information about a user @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA Examples sub 12345 name John Doe given_name John family_name Doe website www.johndoe.com email john@johndoe.com phone_number 620-867-5309
  7. 7. Tokens @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA Identity Token Identifying information for a user and authentication info. Access Token Allows access to an API resource. Contains info about the client and the user Refresh Token Allows requesting new access tokens without user interaction. One time password. https://jwt.io /
  8. 8. What are we going to build today? @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA ASP.NET MVC App ASP.NET MVC Web Api
  9. 9. Demo – Local Store @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA
  10. 10. Demo – Facebook https://developers.facebook.com Add App Update Settings ◦ Update Website to allow authentication from (IdentityServer URL) Use AppID / App Secret @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA
  11. 11. Demo - Google https://console.developers.google.com Create Project Enable Google+ API Create OAuth Consent Create Credentials Use Client Id /Secret @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA
  12. 12. Gotchas You will need to do some legwork, it is not a boxed product Be aware of Claim and Token Size as they will have an impact on performance Be aware of Refresh Tokens and any expiry implementation Use .NET Core 1.1 for Identity Server ◦ As of 10/5 , .NET CORE 2.0 Implementation is now available !! @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA
  13. 13. Questions @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA
  14. 14. Resources http://identityserver.io/ https://github.com/IdentityServer/IdentityServer4 https://github.com/IdentityServer/IdentityServer4.Samples https://github.com/IdentityServer/IdentityServer4.Quickstart.UI http://openid.net/connect/ https://oauth.net/2/ https://developers.facebook.com https://console.developers.google.com @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA

×