Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

oAuth ASP.NET Membership Provider

Tags:

asp.net

asp.net-mvc

oauth

openid

Are there any recommended resources for implementing a custom membership provider that uses oAuth? The goal would be to have users to log into my ASP.NET MVC application using their existing oAuth credentials. After the user is authenticated, I'd then like to leverage the built-in ASP.NET authorization features.

Thanks.

like image 814
Eric Tobia Avatar asked Jul 30 '09 20:07

Eric Tobia

People also ask

How can I use ASP net membership provider?

The ASP.NET membership provider is a feature that enables ASP.NET developers to create Web sites that allow users to create unique user name and password combinations. With this facility, any user can establish an account with the site, and sign in for exclusive access to the site and its services.

How can I use ASP Net Membership in C#?

To create a user in our application by using ASP.NET Membership we need the following steps to complete this process. Step 1: Firstly, open visual studio, then go to File Menu and click New -> Web Site. Step 2: After open the new empty website and add a new item Login. aspx in Registration inside Solution Explorer.

What is OAuth 2.0 in C#?

(Open Authorization) is an open standard for token-based authentication and authorization on the Internet.

2 Answers

I'm not sure what you're looking for is OAuth.

OAuth is for delegating authorization, through the use of tokens. Depending on what you're doing you have two scenarios either:

  1. Your application wants to use some of the users data, hosted by a provider (say twitter or google). In which case your application would be a consumer - in short, the user would need to log-in and agree to authorizing your application to have access to the their data on the provider, and you would be given an access token which can be used to gain access to those protected resources.
  2. Alternatively, you have an application, with users who have log-ins etc. And you want to provide (i.e. you're the provider) access to some restricted information of your users to 3rd party applications (consumers) without exposing your users credentials to those services.

For more info on OAuth - check out the OAuth.Net website. There are currently 3 implementations of OAuth available for .Net.

  • DevDefined.OAuth
  • Madgex OAuth.Net
  • DotNetOpenAuth

Because of the way OAuth works, I can't really imagine how you could have an "OAuth" membership provider - It's really intended for securing API's, and often the goal is to delegate authorization at a more granular level i.e. giving a consumer application access to just a users address book data, without letting them access email archives, their calendar etc. - which doesn't fit well with a membership / role based security model.

I'm guessing what you're really looking for is OpenId i.e. the way you authenticate yourself with Stackoverflow itself. I would suggest reading the Stackoverflow OpenId case study here and probably the best OpenId implementation for .Net is currently part of DotNetOpenAuth project (this was formally called DotNetOpenId, the google code site for the project is here).

like image 58
Bittercoder Avatar answered Oct 13 '22 10:10

Bittercoder

I think you might be looking for DotNetOpenAuth. I haven't used it, so I can't tell you for sure if it includes a membership provider, but I would expect that it does. If not, it's open source, so should help you with what you're trying to do anyway.

like image 6
CoderDennis Avatar answered Oct 13 '22 10:10

CoderDennis
Sign in to Comment

Related questions

Javascript error when using Messenger Connect client-side library in ASP.NET
How to use Created (or CreatedAtAction / CreatedAtRoute) in an asp net core api
WebSockets Tutorial on ASP.NET [closed]
HTTP/2 (HTTP2 or SPDY) on .NET
SimpleMembership with custom database schema in ASP.NET MVC 4
Jquery AJAX with ASP.NET WebMethod Returning Entire Page
Two foreign keys referencing the same primary key
What does the DBContext.Entry do?
A process serving application pool 'Classic .NET AppPool' suffered a fatal communication error with the Windows Process Activation Service
Bundling resources via bundle.config vs BundleConfig.cs in ASP.NET 4.5 WebForms
How does Page.IsValid work?
How to return a PDF from a Web API application
How can I determine browser window size on server side C#
How to configure ELMAH to work with Windows Azure? I get a 404 on Elmah.axd
Creating reusable HTML view components using Razor in ASP.NET MVC
"Trust relationship between ... and the primary domain failed" in MVC5 Authentication
What is the difference between "razor" and "cshtml" files?
Recursive control search with LINQ
Div element won't stay at the bottom when ios 7 virtual keyboard is present
.resx vs database vs custom solution for providing Localization/Globalization

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!