Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

Can we set a static issuer in Identity Server 4?

The access token in response contains the following claims:

"alg": "RS256",
"kid": "143e829c2b57489969753ba4f8205979df0da988c640cffa5f1f4eda1b6e6aa4",
"typ": "JWT"
"nbf": 1481451903,
"exp": 1481455503,
"iss": "https://localhost:44350",
"aud": [ "https://localhost:44350/resources", "customAPI" ],
"client_id": "oauthClient",
"scope": [ "customAPI.read" ]

And here is the config to tell my application to use IdentityServer to authenticate

app.UseIdentityServerAuthentication(
    new IdentityServerAuthenticationOptions
        {
            Authority = "https://localhost:44350/",
            ApiName = "customAPI",
            ApiSecret = "secret",
            AllowedScopes = {"customAPI.full_access", "customAPI.read_only" },                
            RequireHttpsMetadata = false
        });

How do I allow the user to authenticate on different alias of the IdentityServer aside https://localhost:44350/ e.g : http://192.168.1.20:44350/?

As currently the token get from the latter domain is deemed as invalid on my client which has the Authority setting to the former domain.

like image 258
Elveryx Avatar asked Aug 09 '17 04:08

Elveryx


People also ask

What will happen to Identity Server 4?

IdentityServer will be rebranded as Duende IdentityServer. IdentityServer4 support will last until the end of life of . NET Core 3.1 that means till November 2022. In that way, Duende provides new documentation for the fifth service version.

Is Identity Server an identity provider?

IdentityServer. IdentityServer is an OpenID Connect provider - it implements the OpenID Connect and OAuth 2.0 protocols. Different literature uses different terms for the same role - you probably also find security token service, identity provider, authorization server, IP-STS and more.

Is Identity Server 4 still free?

About IdentityServer4IdentityServer is a free, open source OpenID Connect and OAuth 2.0 framework for ASP.NET Core.

What is redirect URI in IdentityServer4?

the allowed interactions with the token service (called a grant type) a network location where identity and/or access token gets sent to (called a redirect URI)


1 Answers

You can set a static issuer name when adding IdentityServer in the ConfigureServices method. It's on the options passed into AddIdentityServer.

https://identityserver4.readthedocs.io/en/release/reference/options.html

like image 155
leastprivilege Avatar answered Oct 02 '22 01:10

leastprivilege