FoxIDs is an open source identity service supporting login, OAuth 2.0, OpenID Connect 1.0, SAML 2.0 and convention between the standards.
FoxIDs consist of two services:
- Identity service called FoxIDs handling user login and all other security traffic.
- Client and API called FoxIDs Control. The Client is used to configure FoxIDs, or alternatively by calling the API directly.
FoxIDs is a cloud service ready to be deployed in you Azure tenant. In the future, it will also be possible to use FoxIDs on https://FoxIDs.com for at small transaction fee.
For Getting started guide and more documentation please see the Wiki.
FoxIDs is .NET Core 3.1 and the Control Client is Blazor .NET Standard 2.1.
Deploy FoxIDs in your Azure tenant.
- Two App Services one for FoxIDs and one for the FoxIDs Control (Client and API). Both App Services is hosted in the same App Service plan.
- FoxIDs is deployed to the two App Services from the
masterbranch with Kudu. Thereafter, it is possible to manually initiate the Kudu update. - Key vault. Secrets are placed in Key vault.
- Document DB.
- Redis cache.
- SendGrid.
- Application Insights.
After successfully deployment open FoxIDs Control Client https://foxidscontrolxxxxxxxxxx.azurewebsites.net (the app service starting with foxidscontrol) which brings you to the master tenant.
The default admin user is: admin@foxids.com with password: FirstAccess!
Sendgrid terms. If you have not already accepted the Sendgrid legal terms for the selected plan in the subscription you will get the error "User failed validation to purchase resources. Error message: 'Legal terms have not been accepted for this item on this subscription: 'XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX'. To accept legal terms using PowerShell, please use Get-AzureRmMarketplaceTerms and Set-AzureRmMarketplaceTerms API(https://go.microsoft.com/fwlink/?linkid=862451) or deploy via the Azure portal to accept the terms'"
You need to accept the terms either by deploying a Sendgrid instance in Azure portal or with PowerShell. The following PowerShell commands accept the Sendgrid terms for the free plan:
Connect-AzureRmAccount $terms = Get-AzureRmMarketplaceTerms -Publisher 'SendGrid' -Product 'sendgrid_azure' -Name 'free' Set-AzureRmMarketplaceTerms -Publisher 'SendGrid' -Product 'sendgrid_azure' -Name 'free' -Terms $terms -AcceptThen delete the falling resource groups and redeploy.
You can upload risk passwrods in FoxIDs Control Client master tenant on the Rrisk Passwords tap.
Download the SHA-1 pwned passwords ordered by hash from haveibeenpwned.com/passwords.
Be aware that it takes some time to upload all risk passwords. This step can be omitted and postponed to later.
The risk passwords are uploaded as bulk which has a higher consumption. Please make sure to adjust the Cosmos DB provisioned throughput (e.g. to 4000 RU/s) temporarily.
It is possible to run the sample applications after they are configured in a FoxIDs track. The sample configuration can be added with the sample seed tool.
Please ask your question on Stack Overflow and email a link to support@itfoxtec.com for me to answer.
FoxIDs
https://localhost:44330
FoxIDs Control (Blazor WebAssembly Client and API)
https://localhost:44331