Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Can we set a static issuer in Identity Server 4?

Tags:

authentication

identityserver4

The access token in response contains the following claims:

"alg": "RS256",
"kid": "143e829c2b57489969753ba4f8205979df0da988c640cffa5f1f4eda1b6e6aa4",
"typ": "JWT"
"nbf": 1481451903,
"exp": 1481455503,
"iss": "https://localhost:44350",
"aud": [ "https://localhost:44350/resources", "customAPI" ],
"client_id": "oauthClient",
"scope": [ "customAPI.read" ]

And here is the config to tell my application to use IdentityServer to authenticate

app.UseIdentityServerAuthentication(
    new IdentityServerAuthenticationOptions
        {
            Authority = "https://localhost:44350/",
            ApiName = "customAPI",
            ApiSecret = "secret",
            AllowedScopes = {"customAPI.full_access", "customAPI.read_only" },                
            RequireHttpsMetadata = false
        });

How do I allow the user to authenticate on different alias of the IdentityServer aside https://localhost:44350/ e.g : http://192.168.1.20:44350/?

As currently the token get from the latter domain is deemed as invalid on my client which has the Authority setting to the former domain.

like image 258
Elveryx Avatar asked Aug 09 '17 04:08

Elveryx

People also ask

What will happen to Identity Server 4?

IdentityServer will be rebranded as Duende IdentityServer. IdentityServer4 support will last until the end of life of . NET Core 3.1 that means till November 2022. In that way, Duende provides new documentation for the fifth service version.

Is Identity Server an identity provider?

IdentityServer. IdentityServer is an OpenID Connect provider - it implements the OpenID Connect and OAuth 2.0 protocols. Different literature uses different terms for the same role - you probably also find security token service, identity provider, authorization server, IP-STS and more.

Is Identity Server 4 still free?

About IdentityServer4IdentityServer is a free, open source OpenID Connect and OAuth 2.0 framework for ASP.NET Core.

What is redirect URI in IdentityServer4?

the allowed interactions with the token service (called a grant type) a network location where identity and/or access token gets sent to (called a redirect URI)

1 Answers

You can set a static issuer name when adding IdentityServer in the ConfigureServices method. It's on the options passed into AddIdentityServer.

https://identityserver4.readthedocs.io/en/release/reference/options.html

like image 155
leastprivilege Avatar answered Oct 02 '22 01:10

leastprivilege
Sign in to Comment

Related questions

HTTP Basic Authentication issue on Android Jelly Bean 4.1 using HttpURLConnection
RTSP Authentication : digest issue
Simple, hard-coded authorization in ASP.NET MVC without complicated providers and database
How to use a Google offline access token to authenticate in background on iOS?
Google OAuth2: Required parameter is missing: grant_type
Access ExpireTimeSpan property of Owin Cookie Authentication to notify user of login expiry
Laravel 5 - change default login action
Does Firebase Email and Password authentication have any security configuration options?
Cannot connect java client to cassandra with password authentication enabled
How to require authentication for all pages with Devise?
Creating a user authentication system for iOS (previously with Parse hopefully AWS) [closed]
Is Firebase's built-in authentication able to be used on a 3rd party server?
Firebase Auth linking anonymous auth user with custom auth user
Push remote commits to github with two-factor authentication enabled
React/Rebase/Firebase warning: Permission Denied - How do I add user authentication?
Oauth service for LDAP authentication
Use express-jwt as middleware to verify Azure AD issued tokens
What is hash fragment referring to in the following text?
Asp.Net WebApi OWIN Authentication
Azure Active Directory B2C pricing clarification with refresh tokens

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!