Stack Overflow
Stack Overflow

Questions tagged [claims-based-identity]

Application model for presenting an identity to a claims aware application. This identity contains claim elements, such as email address or username, in a secure package from a trusted source. This model separates the application from the authentication mechanism.

Resources

Wikipedia Entry - Claims-based identity

MSDN Article - Exploring Claims-Based Identity by Kieth Brown

1595 questions
35
votes
2 answers

How do I perform WIF/claims impersonation without the claim being mapped to an AD account?

I need to perform search impersonation in SharePoint 2010 for Claims users. To put this in context, I would like to first state how I get this to work with Windows accounts and then discuss Claims / WIF. Windows Accounts I can do this for "classic"…
Kirk Liemohn
  • 7,733
  • 9
  • 46
  • 57
33
votes
6 answers

How to use Windows Active Directory Authentication and Identity Based Claims?

Problem We want to use Windows Active Directory to authenticate a user into the application. However, we do not want to use Active Directory groups to manage authorization of controllers/views. As far as I know, there is not an easy way to marry AD…
hlyates
  • 1,279
  • 3
  • 22
  • 44
33
votes
4 answers

How do I create a ClaimsIdentity object for Asp.NET MVC 5?

I am working in a .NET MVC 5 application. I do not want to use Entity Framework. I want to authenticate to a RavenDB database. It looks to me that I want to replace the UserManager that comes with the Account Controller. I think I can rewrite all…
user1304444
  • 1,713
  • 3
  • 21
  • 38
32
votes
1 answer

Asp.net Core Identity Use AspNetUserClaims or AspNetRoleClaims?

I am still confused about all this Identity stuff.  First I am still confused the difference between Roles, Policies/Claims. From what I read roles is the old way of doing stuff and was kept for backward compatibility, so does that mean…
chobo2
  • 83,322
  • 195
  • 530
  • 832
32
votes
5 answers

Add a claim to JWT as an array?

Using thinktecture JWT authentication resource owner flow, I use the claims part of JWT for client consumption. My question is that if it's possible to add a claim in identity server and decode it as an array in client. There is no ClaimTypeValues…
sercan
  • 465
  • 1
  • 7
  • 13
32
votes
3 answers

Server side claims caching with Owin Authentication

I have an application that used to use FormsAuthentication, and a while ago I switched it to use the IdentityModel from WindowsIdentityFramework so that I could benefit from claims based authentication, but it was rather ugly to use and implement.…
Nick Albrecht
  • 16,607
  • 10
  • 66
  • 101
31
votes
3 answers

JWT Authentication - UserManager.GetUserAsync returns null

In AuthController when authenticating I create a few Claims - UserID is one of them. ... Subject = new ClaimsIdentity(new[] { new Claim(ClaimTypes.Name, user.UserName), new Claim("UserID", user.Id.ToString()), }) When Angular app makes request…
Alex Herman
  • 2,708
  • 4
  • 32
  • 53
30
votes
3 answers

ASP.NET Core - Add role claim to User

I've an ASP.NET Core (based on .NET Framework) using Windows Authentication. Point is, I need to add a role claim on that user and this role is stored in a distant database. I've read so much thing about OWIN/Cookie/UserManager/UserStore/Identity…
Arnaud F.
  • 8,252
  • 11
  • 53
  • 102
29
votes
5 answers

Add claims on successful login and retrieve it elsewhere in the application

Please I need assistance in implementing a custom way of assigning claims to authenticated users. On successful login, var result = await SignInManager.PasswordSignInAsync(model.Email, model.Password, model.RememberMe, shouldLockout: false); …
Josh
  • 1,660
  • 5
  • 33
  • 55
27
votes
1 answer

Difference between Claims vs OAuth

What is the difference between Claims based authentication vs What is provided by OAuth. I am looking for conceptual difference and not technical difference. When do I choose Claims over OAuth and vice versa. Claims based authentication is proposed…
Venki
  • 2,129
  • 6
  • 32
  • 54
26
votes
2 answers

NameIdentifier vs ObjectIdentifier

I have a multitenant ASP.NET application using OpenIdConnect and Azure AD as an Identity provider for Office 365. When the user is authenticated I receive my claims in ClaimsPrincipal.Current. I wanted to identify a user and store this id reference…
Benoit Patra
  • 4,355
  • 5
  • 30
  • 53
26
votes
2 answers

Storing a list of string in Claim (System.Security.Claims)

I'm developing a web app with Asp.Net 5 MVC, Owin and Oauth2 bearer token as auth type. I need to store a list of string "CODEFOO,CODBAR,CODEX,.." inside a System.Security.Claims.Claim with a custom claim Type. When the user requests a token, this…
systempuntoout
  • 71,966
  • 47
  • 171
  • 241
25
votes
3 answers

Unable to add and fetch custom claims values

I am using mvc 5 with identity 2.0. I want use custom claim values over the application but I get null values. What am I doing wrong? Updated code Login Code in account controller if (!string.IsNullOrEmpty(model.UserName) &&…
Neeraj Sharma
  • 568
  • 6
  • 18
24
votes
3 answers

ASP.NET Identity "Role-based" Claims

I understand that I can use claims to make statements about a user: var claims = new List(); claims.Add(new Claim(ClaimTypes.Name, "Peter")); claims.Add(new Claim(ClaimTypes.Email, "peter@domain.com")); But how should I store "role-based"…
Dave New
  • 38,496
  • 59
  • 215
  • 394
23
votes
3 answers

ASP.net core auth cookie not being set in Google Chrome when running in dev

I have three applications in my solution, all built in asp.net core 1 MVC 6. App 1 is an MVC app used for authenticating a user. App 2 is an Angular SPA app and is the main app in the solution. App 3 is an MVC web api application. In app…
Rob
  • 6,819
  • 17
  • 71
  • 131
1
2
3
99 100