ASP.NET Core IdentityServer Tutorials

This section provides a comprehensive guide to implementing authentication and authorization in your ASP.NET Core applications using IdentityServer. Learn how to secure your APIs and web applications with OAuth 2.0 and OpenID Connect.

Getting Started with IdentityServer

IdentityServer is an open-source identity and access control server for .NET. It implements the popular identity standards OAuth 2.0, OpenID Connect, and JOSE specifications.

The following tutorials will guide you through the core concepts and implementation steps:

1. IdentityServer Quickstart: Running the Sample
Deploy and run a pre-configured IdentityServer sample to quickly understand its basic functionality.
2. Integrating ASP.NET Core Identity
Learn how to connect IdentityServer with ASP.NET Core Identity for user management and authentication.
3. Securing an ASP.NET Core API with IdentityServer
Protect your API endpoints using access tokens issued by IdentityServer.
4. Securing a Single-Page Application (SPA)
Implement authentication and authorization for client-side applications like React, Angular, or Vue.js.
5. Customizing IdentityServer
Explore advanced customization options for login pages, consent screens, and token issuance.
6. Token Validation in Client Applications
Understand how to validate tokens received from IdentityServer in your client applications.
7. Deploying IdentityServer
Best practices and considerations for deploying IdentityServer in production environments.

Key Concepts

OAuth 2.0 Flows: Authorization Code Flow, Implicit Flow, Client Credentials Flow.
OpenID Connect: ID Tokens, UserInfo Endpoint.
Scopes: Defining permissions and resources.
Clients: Registering and configuring applications that consume your IdentityServer.
Identity Resources: Representing user identity information.
API Resources: Representing your protected APIs.

For detailed API reference and advanced topics, please visit the IdentityServer API Reference.