2. Stamo
Petkov Head of Microsoft Technology
Department at
Information Services Plc.
s.g.petkov@is-bg.net
stamo.petkov@gmail.com
https://github.com/stamo
http://bg.linkedin.com/in/stamopetkov
https://www.facebook.com/stamo.petkov
@stamo_petkov
1
2
3
2
Soft Unit Conf, 28/29 sep 2018
4. Single sign-on (SSO) is a property
of access control of multiple
related, yet independent,
software systems (WikipediA)
SSO is strictly related to validating
user credentials and establishing
the identity of the user
Sharing session information
across different domains
Single Sign On1
2
3
Soft Unit Conf, 28/29 sep 2018
4
6. OAuth2 and
OpenID
Connect
OAuth 2.0 is the industry-standard protocol for
authorization
OAuth 2.0 authorization framework enables a
third-party application to obtain limited access
to an HTTP service, either on behalf of a
resource owner by orchestrating an approval
interaction between the resource owner and
the HTTP service, or by allowing the third-party
application to obtain access on its own behalf
OpenID Connect is an interoperable
authentication protocol based on the OAuth
2.0 family of specifications. It uses
straightforward REST/JSON message flows
with a design goal of “making simple things
simple and complicated things possible”
OpenID Connect allows for clients of all types,
including browser-based JavaScript and native
mobile apps, to launch sign-in flows and
receive verifiable assertions about the identity
of signed-in users
1
2
3
4
6
Soft Unit Conf, 28/29 sep 2018
7. IdentityServer4 is an OpenID
Connect and OAuth 2.0
framework for ASP.NET Core 2
Centralized login logic and
workflow for all of your
applications (web, native, mobile,
services)
IdentityServer is an officially
certified implementation of
OpenID Connect
IdentityServer 4
1
2
3
Soft Unit Conf, 28/29 sep 2018
7
8. Single Sign-on / Sign-out
Access Control for APIs
Federation Gateway
Focus on Customization
Open Source
Available as NuGet Package
IdentityServer 4
1
2
3
Soft Unit Conf, 28/29 sep 2018
8
4
5
6
10. ASP.Net Core 2
Web Application
ASP.Net Core 2
Web Application
Demo
1 32
10
Soft Unit Conf, 28/29 sep 2018
IdentityServer 4
Demo can be found here: https://github.com/stamo/IdentityServerDemo