2019年11月13日 星期三

[ASP.NET Core] Identity Server 4 - Concepts


 ASP.NET Core   Identity Server 4   OpenID   OAuth2.0 


Concepts


Protocols

Name
Description
OAuth 2.0
Grant access to functionality/data/etc.. without having to deal with the original authentication.
OpenID Connect (OIDC)
OpenID Connect is an authentication protocol that is a simple identity layer on top of the OAuth 2.0 protocol.



Definitions


Name
Description
Example
Auth Server
Authentication and Authorization center which
·         Verify the identity of user
·         Issue Access Token
·         Authorize the client to access protected resource
Identity Server 4
ASP.NET Identity + OWIN
Resource
Resource may be
·         User/Account information
·         API
·         Data
1.  Personal information, such as name, address, photos.
2.  Application or APIs.
Resource owner
Resource owner may be
·         User
·         Machine
·         Application
Who own the resource and authorize an Client to access their resource.
A Dropbox or Google Cloud Driver end-user.
The end-user can authorize other 3rd party application to access their resources stored in Dropbox or Google Cloud Driver.
Resource Server
Who hosts the protected user accounts, resource
Dropbox, Google Cloud Driver
Client
The client is the application that wants to access the user (resource owner)'s resource
The 3rd party application who want to access the files in Dropbox or Google Cloud Driver


  

 

Related articles

 

01.      [OpenLDAP] Create an OpenLDAP container

02.      [ASP.NET Core] Identity Server 4 – Concepts

03.      [ASP.NET Core] Identity Server 4 – LDAP authentication

04.      [ASP.NET Core] Identity Server 4 – Secure Web API

05.      [ASP.NET Core] Identity Server 4 – Custom Event Sink

06.      [ASP.NET Core] Identity Server 4 – Refresh Token

07.      [ASP.NET Core] Identity Server 4 – Role based authorization

08.      [ASP.NET Core] Identity Server 4 – Policy based authorization

09.      [ASP.NET Core] Identity Server 4 - Dockerize

10.      [ASP.NET Core] Identity Server 4 – Client Credential

11.      [ASP.NET Core] Identity Server 4 – Policy based authorization with custom Authorization Handler

12.      [ASP.NET Core] Identity Server 4 – Signing credential

13.      [ASP.NET Core] Identity Server 4 – Authenticate by multiple LDAP

14.      [ASP.NET Core] Identity Server 4 – Cache and refresh Discovery document

15.      [ASP.NET Core] Identity Server 4 – PKCE Authorization Code Flow

16.      [ASP.NET Core] Identity Server 4 – PKCE Authorization Code Flow (Javascript client)

 




張貼者:

沒有留言:

張貼留言

訂閱: 張貼留言 (Atom)