Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

OAuth v2.0 in combination with ASP.NET MVC 4 Web API

Tags:

c#

.net

asp.net-web-api

oauth-2.0

asp.net-mvc-4

I’m trying to build a Web API that uses the oauth 2 standard to authenticate users with my existing application where the Web API communicates with. Therefore I want to setup a oauth 2 server/service that checks the users with my existing applications that has users and roles. Unfortunately I can’t get a good/simple example of how to setup a service like that. So my question is do you have examples or better ideas to authenticate my users?

like image 282
jfamvg Avatar asked Feb 18 '14 14:02

jfamvg

1 Answers

I didn't quite understand your question to be honest, so I'm not sure if you're asking about general OAuth integration or how to find an OAuth server to integrate your app with.

I'll take my chance and share some search results with you. Hope these will help.

This is a good article about oauth integration. Although it suggests to take a look at http://www.asp.net/identity first to get a better understanding of OAuth and Asp.Net integration.

http://blog.mszcool.com/index.php/2013/12/asp-net-4-5-1-webapi-general-integration-with-oauth2-and-oauth-authentication-servers/

As seen in the post, this flow can guide you to implement your own OAuth server and then you can integrate it with your WebApi.

OAuth Implicit Grant Flow

There is also this article: http://www.developerfusion.com/article/147914/protecting-your-aspnet-web-api-using-oauth2-and-the-windows-azure-access-control-service/

This one has the following headlines:

  • Why would I need an API?
  • API characteristics
  • Building an API in ASP.NET
  • Getting to know OAuth2
  • Windows Azure Access Control Service
  • Consuming an API protected using OAuth2
  • Building an API protected using OAuth2 (and Windows Azure ACS)

And finally this SO post might be helpful as well. It is about authentication using OAuth in WebApi.

Good luck!

Edit

Since you said you want to implement your own OAuth server I'm adding a couple more references about OAuth 1.0 protocol.

RFC 5849 OAuth 1.0 Protocol and there is this guide which might help you get a better understanding of OAuth workflow. enter link description here

As for the implementing part, I'm not an expert on that but, you first need to read and understand OAuth protocol so that your own OAuth server can be generic to other OAuth clients and you're actually implementing OAuth. After you understand the OAuth protocol itself, you can pretty much code your server the way you like.

Hope this extra information helps too.

like image 88
Tequilalime Avatar answered Nov 03 '22 00:11

Tequilalime
Sign in to Comment

Related questions

iTextSharp XMLWorker parsing really slow
Is it possible to test WCF throttling behaviour through Wcftest client?
Can I use relative fast queries in the SitecoreQuery attribute?
Html Antiforgerytoken cookie and input values are different
How to Bind to Another Control Property in WPF
What is the difference between [HttpPost] and [WebMethod]?
Package whole C# Console application in one file?
MongoDump query with BinData
How to debug C++ code in a Windows Phone (8) Runtime Component or C++ DLL in VS 2013
SignalR 2.0.2 Creating PersistentConnection
OData Exception: A recursive loop of complex types is not allowed
Aggregate data from child into parent for Binding
Linq Expression to Turn DataTable to Dictionary of <Key, List<Values>>
System.ObjectDisposedException with Virtual property in entity framework
How to call ICommand.CanExecute in this case?
BlockingCollection<T> batching using TPL DataFlow [duplicate]
Can I use events to signal between applications?
calling derived methods on a baseclass collection
Umbraco MVC with Castle Windsor
How can I access to an internal static class from another assembly?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!