Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
Upcoming SlideShare
What to Upload to SlideShare
Next
Download to read offline and view in fullscreen.

0

Share

DCC17 - Identity Server 4

Download to read offline

These are the slides presented at Desert Code Camp

Related Books

Free with a 30 day trial from Scribd

See all

Related Audiobooks

Free with a 30 day trial from Scribd

See all
  • Be the first to like this

DCC17 - Identity Server 4

  1. 1. Identity Server ARE YOU AUTHENTICATED?
  2. 2. About me Chris Holwerda Architect and Developer for 20 years. Currently a consultant for Neudesic. @cholwerda www.chrisholwerda.com therealchrisholwerda@gmail.com
  3. 3. Today’s Landscape @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA https://identityserver4.readthedocs.io/en/release/intro/big_picture.html
  4. 4. Security Token Service @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA https://identityserver4.readthedocs.io/en/release/intro/big_picture.html
  5. 5. Identity Server @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA https://identityserver4.readthedocs.io/en/release/intro/terminology.html
  6. 6. Claims Identity information about a user @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA Examples sub 12345 name John Doe given_name John family_name Doe website www.johndoe.com email john@johndoe.com phone_number 620-867-5309
  7. 7. Tokens @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA Identity Token Identifying information for a user and authentication info. Access Token Allows access to an API resource. Contains info about the client and the user Refresh Token Allows requesting new access tokens without user interaction. One time password. https://jwt.io /
  8. 8. What are we going to build today? @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA ASP.NET MVC App ASP.NET MVC Web Api
  9. 9. Demo – Local Store @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA
  10. 10. Demo – Facebook https://developers.facebook.com Add App Update Settings ◦ Update Website to allow authentication from (IdentityServer URL) Use AppID / App Secret @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA
  11. 11. Demo - Google https://console.developers.google.com Create Project Enable Google+ API Create OAuth Consent Create Credentials Use Client Id /Secret @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA
  12. 12. Gotchas You will need to do some legwork, it is not a boxed product Be aware of Claim and Token Size as they will have an impact on performance Be aware of Refresh Tokens and any expiry implementation Use .NET Core 1.1 for Identity Server ◦ As of 10/5 , .NET CORE 2.0 Implementation is now available !! @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA
  13. 13. Questions @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA
  14. 14. Resources http://identityserver.io/ https://github.com/IdentityServer/IdentityServer4 https://github.com/IdentityServer/IdentityServer4.Samples https://github.com/IdentityServer/IdentityServer4.Quickstart.UI http://openid.net/connect/ https://oauth.net/2/ https://developers.facebook.com https://console.developers.google.com @CHOLWERDA | CHRISHOLWERDA.COM | GITHUB.COM/HOLWERDA

These are the slides presented at Desert Code Camp

Views

Total views

1,158

On Slideshare

0

From embeds

0

Number of embeds

97

Actions

Downloads

41

Shares

0

Comments

0

Likes

0

×