Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Modern Authentication with OpenID Connect and IdentityServer 4 (umBristol - July 2017)

353 views

Published on

Slides from my talk at Umbraco umBristol user group.

Published in: Technology
  • Be the first to comment

  • Be the first to like this

Modern Authentication with OpenID Connect and IdentityServer 4 (umBristol - July 2017)

  1. 1. © 2017 RoCk SOLid KnOwledge 1 RoCk KnOwledge SOLiD www.rocksolidknowledge.com Modern Authentication with OpenID Connect and IdentityServer 4 Scott Brady - @scottbrady91
  2. 2. © 2017 RoCk SOLid KnOwledge 2 Introductions Identity & Access Control Lead @ RSK European Commercial Partners for IdentityServer Umbraco Gold Partner Xamarin Authorized Consulting Partner Scott Brady & RSK
  3. 3. © 2017 RoCk SOLid KnOwledge 3 Agenda OAuth OpenID Connect Identity Umbraco & IdentityServer
  4. 4. © 2017 RoCk SOLid KnOwledge 4 Why? Mobile devices Single Page Applications Microservices
  5. 5. © 2017 RoCk SOLid KnOwledge 5 Terminology Authentication Authorization
  6. 6. © 2017 RoCk SOLid KnOwledge 6 Scenario Allow Umbraco to send emails on the users behalf
  7. 7. © 2017 RoCk SOLid KnOwledge 7 API Authorization Cross Site Request Forgery Cookies
  8. 8. © 2017 RoCk SOLid KnOwledge 8 API Authorization Impersonation No revocation Exposes user credentials Limits user authentication methods Client must be able to keep a secret Credential Sharing
  9. 9. © 2017 RoCk SOLid KnOwledge 9 API Authorization Implementation specific No guarantee of who made the request Client must be able to keep a secret API Key
  10. 10. © 2017 RoCk SOLid KnOwledge 10 User Client Protected Resource (API) Authorization Server Authorization Request Authorization Grant Authorization Grant Access Token Request Protected Resource Trust Authentication
  11. 11. © 2017 RoCk SOLid KnOwledge 11 OpenID Connect OAuth + Authentication Formalises OAuth Spec Identity Tokens Authentication
  12. 12. © 2017 RoCk SOLid KnOwledge 12
  13. 13. © 2017 RoCk SOLid KnOwledge 13 IdentityServer OpenID Connect Provider (Implements OAuth and OpenID Connect) Recommended Solution by the ASP.NET Team
  14. 14. © 2017 RoCk SOLid KnOwledge 14 Demo
  15. 15. © 2017 RoCk SOLid KnOwledge 15 RSK & IdentityServer www.identityserver.com AdminUI IdentityExpress

×