2019年11月13日 星期三

[ASP.NET Core] Identity Server 4 - Concepts


 ASP.NET Core   Identity Server 4   OpenID   OAuth2.0 


Concepts


Protocols

Name
Description
OAuth 2.0
Grant access to functionality/data/etc.. without having to deal with the original authentication.
OpenID Connect (OIDC)
OpenID Connect is an authentication protocol that is a simple identity layer on top of the OAuth 2.0 protocol.



Definitions


Name
Description
Example
Auth Server
Authentication and Authorization center which
·         Verify the identity of user
·         Issue Access Token
·         Authorize the client to access protected resource
Resource
Resource may be
·         User/Account information
·         API
·         Data
1.  Personal information, such as name, address, photos.
2.  Application or APIs.
Resource owner
Resource owner may be
·         User
·         Machine
·         Application
Who own the resource and authorize an Client to access their resource.
A Dropbox or Google Cloud Driver end-user.
The end-user can authorize other 3rd party application to access their resources stored in Dropbox or Google Cloud Driver.
Resource Server
Who hosts the protected user accounts, resource
Dropbox, Google Cloud Driver
Client
The client is the application that wants to access the user (resource owner)'s resource
The 3rd party application who want to access the files in Dropbox or Google Cloud Driver


  




沒有留言:

張貼留言