Stack Overflow
Stack Overflow

Questions tagged [thinktecture-ident-server]

Thinktecture IdentityServer is an open source security token service based on Microsoft technologies designed around Claims Based Authentication and Windows Identity Foundation.

Thinktecture IdentityServer is an open source security token service based on Microsoft technologies designed around Claims Based Authentication and Windows Identity Foundation.

Version 2: https://github.com/IdentityServer/IdentityServer2/

Version 3: https://github.com/IdentityServer/IdentityServer3/

337 questions
3
votes
2 answers

OpenId Connect, best approach to getting a bearer token client side to call WebApi after MVC signin?

I am hoping someone can advise me on this please. I have been following a modified form of this tutorial Getting started with thinktecture Identity server to try to setup a site with OpenId Connect authentication. I have this set up: An Asp.NET MVC…
Kayla
  • 31
  • 3
3
votes
2 answers

pass openid-connect oauth2 bearer token in header

Background I've implemented the Thinktecture.IdentityServer.V3 (the openID Connect one). I've got the OAuth2 bearer token returned to my javascript client (implicit flow) in the form: { "id_token": "eyJ0eXAiOiJKV1QiLCJh...", // JWT …
Peter Lea
  • 1,731
  • 2
  • 15
  • 24
3
votes
2 answers

Revoke token Identity Server OAuth2

I wonder if it is possible to revoke an OAuth 2.0 token issued by ThinkTecture Identity Server as I want to make my application logout.
Raul Molina
  • 41
  • 3
3
votes
1 answer

How do I encrypt the JWT tokens in Thinktecture Identity Server?

Does Thinktecture.IdentityServer support encrypting the JWT tokens it issues, for example to protect the token from being used in a reply attack? If yes, how can a client decrypt the encrypted token? I have tried to enabling "Require Token…
Aggis Wu
  • 99
  • 1
  • 10
3
votes
2 answers

How to Validate JWT Token issued by Thinktecture identity server?

Is there any way that when the OAuth client get the JWT token from identity server is OK or not? I afraid the when user get the access_token and try to use base64 to decode it then users can modify the token string . My scenario is : I have two web…
Aggis Wu
  • 99
  • 1
  • 10
3
votes
1 answer

Persisting the OAuth2 bearer token when using Thinktecture Identity Server

I've been following the Thinktecture Identity Server example of OAuth2 Resource Owner Password Flow found at http://leastprivilege.com/2012/11/01/oauth2-in-thinktecture-identityserver-v2-resource-owner-password-flow/ I have the example working and…
Paul Devenney
  • 889
  • 6
  • 18
3
votes
2 answers

Identity server single sign out, logout from server too

Here is my logout code that I use in relying party: FederationConfiguration cfg = FederatedAuthentication.FederationConfiguration; var fam = FederatedAuthentication.WSFederationAuthenticationModule; fam.SignOut(false); var…
formatc
  • 4,261
  • 7
  • 43
  • 81
3
votes
0 answers

Not authorized for requested resource when already logged in to Identity server

I have Identity server running locally with self signed SSL certificate, and RP that doesn't use HTTPS, when I try logging in for the first time(without being already logged in on IdentityServer) everything goes fine, I get authorized and redirected…
formatc
  • 4,261
  • 7
  • 43
  • 81
3
votes
2 answers

after federated authentication, redirect to originally requested url

We've setup federated security using ThinkTecture server. When a user wishes to access a particular URL, they get redirected to the Identity Provider Server (IDP), they login, get authenticated. Then, the IDP server will redirect the user back to…
peter.swallow
  • 905
  • 14
  • 38
3
votes
1 answer

Federated security using Thinktecture IdentityServer

I have few mvc applications that are still in development and use Forms with SimpleMembership to register and authenticate users, these applications use same database and I have foreign keys all around to UserProfile table from simple…
formatc
  • 4,261
  • 7
  • 43
  • 81
3
votes
1 answer

ThinkTecture.IdentityModel "The type 'System.IdentityModel.Tokens.SecurityToken' is defined in an assembly that is not referenced

I start using ThinkTecture.IdentityModel in my project and I am facing a serious issue. Please help me on the same. Error 1 "The type 'System.IdentityModel.Tokens.SecurityToken' is defined in an assembly that is not referenced. You must add a…
Utsav
  • 1,593
  • 4
  • 22
  • 46
3
votes
1 answer

How do I return multiple identities in a token with Thinktecture.IdentityServer.45?

In the Thinktecture.IdentityModel.45 library, I can get a Microsoft.IdentityModel.Claims.ClaimsIdentityCollection by executing something like this: Dim handler = New JsonWebTokenHandler() handler.Configuration = config ' set elsewhere Dim…
John Jelinek
  • 831
  • 9
  • 23
3
votes
2 answers

Cannot serialize Saml2AssertionKeyIdentifierClause

I'm attempting to put together a claims-aware WCF service and client. I'm using the thinktecture Identity Server, and I've put together a console client by looking at the "Using a token with WCF/SOAP" example: var token = GetSecurityToken(); var…
Roger Lipscombe
  • 89,048
  • 55
  • 235
  • 380
2
votes
2 answers

IdentityServer 4: No storage mechanism for grants specified - use AddInMemoryStores

I am using Identity Server 4 , ASP.NET Core and trying to replace the IdentityServer developer in Production environment. But getting the following error: No storage mechanism for grants specified. Use the 'AddInMemoryStores' extension method to…
Hussein Salman
  • 7,806
  • 15
  • 60
  • 98
2
votes
1 answer

Cannot use refresh token to obtain new access token and refresh token in Identity Server 3 implementation

I've been playing around with Thinktecture's identity server and now I have some problems trying to reach the refresh token endpoint. What I have is few clients configured like this: Authorization code flow client: new Client { ClientId =…
user2128702
  • 2,059
  • 2
  • 29
  • 74
1 2 3
22 23